CVE-2024-6387 | OpenSSH up to 9.8 on Linux Signal grace_alarm_handler race condition

Posted by Angelo Barbosa | Jul 1, 2024 | CVE

A vulnerability was found in OpenSSH up to 9.8 on Linux and classified as critical. This issue affects the function grace_alarm_handler of the component Signal Handler. The manipulation leads to race condition.

The identification of this vulnerability is CVE-2024-6387. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6387 | OpenSSH up to 9.8 on Linux Signal grace_alarm_handler race condition

Related Posts

CVE-2023-6204: Mozilla Thunderbird Graphics out-of-bounds

CVE-2024-38222 | Microsoft Edge information disclosure

CVE-2024-23659 | SPIP up to 4.1.13/4.2.7 File Upload javascript/bigup.js name cross site scripting

CVE-2024-8385 | Mozilla Firefox up to 129.x WASM type confusion