VYPR

rpm package

suse/openssh-askpass-gnome&distro=SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE

pkg:rpm/suse/openssh-askpass-gnome&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE

Vulnerabilities (2)

  • CVE-2026-35414MedApr 2, 2026
    affected < 6.6p1-36.31.1fixed 6.6p1-36.31.1

    OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list in conjunction with a Certificate Authority that makes certain use of comma characters.

  • CVE-2026-35385HigApr 2, 2026
    affected < 6.6p1-36.31.1fixed 6.6p1-36.31.1

    In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the download is performed as root with -O (legacy scp protocol) and without -p (preserve mode).