CVE-2024-6409

Published: Jul 8, 2024

Modified: Nov 11, 2025

PUBLISHED

CVSS v3.1

7.0

HIGH

Description

A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does not authenticate within a set time period, then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog(). As a consequence of a successful attack, in the worst case scenario, an attacker may be able to perform a remote code execution (RCE) as an unprivileged user running the sshd server.

Vendor	Product	Versions
Unknown	OpenSSH	All versions
Red Hat	Red Hat Enterprise Linux 9	unaffected `0:8.7p1-38.el9_4.4 - < *`
Red Hat	Red Hat Enterprise Linux 9	unaffected `0:8.7p1-38.el9_4.4 - < *`
Red Hat	Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	unaffected `0:8.7p1-12.el9_0.3 - < *`
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	unaffected `0:8.7p1-30.el9_2.7 - < *`
Red Hat	Red Hat OpenShift Container Platform 4.13	unaffected `413.92.202408122222-0 - < *`
Red Hat	Red Hat OpenShift Container Platform 4.14	unaffected `414.92.202407300859-0 - < *`
Red Hat	Red Hat OpenShift Container Platform 4.15	unaffected `415.92.202407301159-0 - < *`
Red Hat	Red Hat OpenShift Container Platform 4.16	unaffected `416.94.202407171205-0 - < *`
Red Hat	Red Hat Enterprise Linux 10	All versions
Red Hat	Red Hat Enterprise Linux 6	All versions
Red Hat	Red Hat Enterprise Linux 7	All versions
Red Hat	Red Hat Enterprise Linux 8	All versions