CSOonline4d
OpenSSH fixes flaws that enable man-in-the-middle, DoS attacks
Researchers from Qualys found two vulnerabilities that can be combined to bypass the server key verification in OpenSSH ...
SecurityWeek5d
OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks
The latest OpenSSH update patches two vulnerabilities, including one that enabled MitM attacks with no user interaction.
Hackaday11mon
Security Alert: Potential SSH Backdoor Via Liblzma
But the bottom line is that a machine with a patched sshd binary, that also has xz packages version 5.6.0 or 5.6.1, is vulnerable to unauthenticated SSH logins. The good news is that only a few ...
Computing7mon
'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems
"This race condition affects sshd in its default configuration." Fortunately, however, being a race condition means is not easy to exploit, requiring multiple attempts for a successful attack.