Back to search
CVE-2011-0539
Published: Feb 10, 2011
Modified: May 29, 2026
PUBLISHED
Description
The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct hash collision attacks.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20110204 Re: [vendor-sec] OpenSSH security advisory: legacy certificate signing in 5.6/5.7
mailing-list
x_refsource_MLIST
1025028
vdb-entry
x_refsource_SECTRACK
46155
vdb-entry
x_refsource_BID
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673
x_refsource_CONFIRM
ADV-2011-0284
vdb-entry
x_refsource_VUPEN
43181
third-party-advisory
x_refsource_SECUNIA
HPSBMA02658
vendor-advisory
x_refsource_HP
SSRT100413
vendor-advisory
x_refsource_HP
44269
third-party-advisory
x_refsource_SECUNIA
http://www.openssh.com/txt/legacy-cert.adv
x_refsource_CONFIRM
openssh-certificate-info-disclosure(65163)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now