CVE-2019-16905

Name of the Vulnerable Software and Affected Versions OpenSSH versions 7.7 through 7.9 OpenSSH versions 8.x before 8.1

Description The issue is caused by an integer overflow in the XMSS key parsing algorithm, leading to memory corruption and local code execution. This occurs when OpenSSH is compiled with an experimental key type and a client or server is configured to use a crafted XMSS key. The XMSS implementation is considered experimental in all released OpenSSH versions.

Recommendations For OpenSSH versions 7.7 through 7.9, consider disabling the experimental XMSS key type until a patch is available. For OpenSSH versions 8.x before 8.1, consider disabling the experimental XMSS key type until a patch is available. As a temporary workaround, avoid using the crafted XMSS key in the affected OpenSSH versions.