CVE-2024-6409

Source
https://cve.org/CVERecord?id=CVE-2024-6409
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-6409.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-6409
Downstream
Related
Published
2024-07-08T17:57:10.517Z
Modified
2026-07-08T06:27:44.250542793Z
Severity
  • 7.0 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H CVSS Calculator
Summary
Openssh: possible remote code execution due to a race condition in signal handling affecting red hat enterprise linux 9
Details

A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does not authenticate within a set time period, then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog(). As a consequence of a successful attack, in the worst case scenario, an attacker may be able to perform a remote code execution (RCE) as an unprivileged user running the sshd server.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/6xxx/CVE-2024-6409.json",
    "cna_assigner": "redhat",
    "cwe_ids": [
        "CWE-364"
    ]
}
References

Affected packages

Git / github.com/openela-main/openssh

Affected ranges

Type
GIT
Repo
https://github.com/openela-main/openssh
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "REFERENCES"
}

Affected versions

imports/el9/openssh-8.*
imports/el9/openssh-8.7p1-30.el9_2
imports/el9/openssh-8.7p1-34.el9
imports/el9/openssh-8.7p1-34.el9_3.3
imports/el9/openssh-8.7p1-38.el9
imports/el9/openssh-8.7p1-38.el9_4.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-6409.json"