CLSA-2026-1774366569

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1774366569

Upstream

CVE-2026-3497

Published

2026-03-24T15:36:14Z

Modified

2026-06-04T09:47:31.876061563Z

Summary

Fix CVE(s): CVE-2026-3497

Details

SECURITY UPDATE: pre-auth crash via GSSAPI key exchange
- debian/patches/CVE-2026-3497.patch: replace sshpktdisconnect() with sshpacketdisconnect() and initialize gssbuffer_desc variables in kexgssc.c, kexgsss.c.
- CVE-2026-3497

References

https://errata.tuxcare.com/els_os/ubuntu20.04els/CLSA-2026-1774366569.html

Affected packages

TuxCare:Ubuntu:20.04

openssh-client

Package

Name: openssh-client
Purl: pkg:deb/tuxcare/openssh-client?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:8.2p1-4ubuntu0.13+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json"

openssh-server

Package

Name: openssh-server
Purl: pkg:deb/tuxcare/openssh-server?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:8.2p1-4ubuntu0.13+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json"

openssh-sftp-server

Package

Name: openssh-sftp-server
Purl: pkg:deb/tuxcare/openssh-sftp-server?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:8.2p1-4ubuntu0.13+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json"

openssh-tests

Package

Name: openssh-tests
Purl: pkg:deb/tuxcare/openssh-tests?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:8.2p1-4ubuntu0.13+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json"

ssh

Package

Name: ssh
Purl: pkg:deb/tuxcare/ssh?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:8.2p1-4ubuntu0.13+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json"

ssh-askpass-gnome

Package

Name: ssh-askpass-gnome
Purl: pkg:deb/tuxcare/ssh-askpass-gnome?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:8.2p1-4ubuntu0.13+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1774366569.json"