DescriptionThe key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct hash collision attacks.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
Note from the SUSE Security TeamThis issue only affects openssh 5.6 and 5.7. Only openSUSE 11.4 shipped this version and has received fixes. Older produxcts or openssh versions are not affected. SUSE Bugzilla entry: 669477 [VERIFIED / FIXED] No SUSE Security Announcements cross referenced.
SUSE Timeline for this CVECVE page created: Fri Jun 28 04:24:21 2013
CVE page last modified: Fri Oct 7 12:46:02 2022