Candidate: CVE-2019-6110 PublicDate: 2019-01-31 18:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6110 https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt https://lists.mindrot.org/pipermail/openssh-unix-dev/2019-January/037459.html Description: In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred. Ubuntu-Description: Notes: seth-arnold> openssh-ssh1 is provided for compatibility with old devices that cannot be upgraded to modern protocols. Thus we may not provide security support for this package if doing so would prevent access to equipment. mdeslaur> mdeslaur> The recommended workaround for this issue is to switch to using mdeslaur> sftp instead of scp. mdeslaur> mdeslaur> Per https://lists.mindrot.org/pipermail/openssh-unix-dev/2019-January/037475.html mdeslaur> upstream doesn't consider this to be a vulnerability, and as of mdeslaur> 2020-07-07, there is no upstream fix. We will not be fixing mdeslaur> this issue in Ubuntu stable releases. Bugs: Priority: low Discovered-by: Harry Sintonen Assigned-to: CVSS: nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N [6.8 MEDIUM] Patches_openssh: upstream_openssh: needs-triage precise/esm_openssh: ignored trusty_openssh: ignored (reached end-of-life) trusty/esm_openssh: ignored xenial_openssh: ignored esm-infra/xenial_openssh: ignored bionic_openssh: ignored cosmic_openssh: ignored (reached end-of-life) disco_openssh: ignored (reached end-of-life) eoan_openssh: ignored focal_openssh: ignored devel_openssh: ignored Patches_openssh-ssh1: upstream_openssh-ssh1: ignored (frozen on openssh 7.5p) precise/esm_openssh-ssh1: DNE trusty_openssh-ssh1: DNE trusty/esm_openssh-ssh1: DNE xenial_openssh-ssh1: DNE bionic_openssh-ssh1: ignored cosmic_openssh-ssh1: ignored (reached end-of-life) disco_openssh-ssh1: ignored (reached end-of-life) eoan_openssh-ssh1: ignored focal_openssh-ssh1: ignored devel_openssh-ssh1: ignored