CVE-2016-0777
6.5 MEDIUMThe resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sen...
Published: 2016-01-14 · Last updated: 2026-05-29
Severity and scoring
- CVSS
- 6.5 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-200
Affected products
| Vendor | Product |
|---|---|
| apple | linux, mac_os_x, openssh |
| hp | linux, mac_os_x, openssh |
| openbsd | linux, mac_os_x, openssh |
| oracle | linux, mac_os_x, openssh |
| sophos | linux, mac_os_x, openssh |
Description
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2016-0777
- [Other]http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10734
- [Other]http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176516.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175592.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175676.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176349.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html
- [Other]http://packetstormsecurity.com/files/135273/Qualys-Security-Advisory-OpenSSH-Overflow-Leak.html
- [Other]http://seclists.org/fulldisclosure/2016/Jan/44
- [Other]http://www.debian.org/security/2016/dsa-3446
- [Vendor advisory]http://www.openssh.com/txt/release-7.1p2
- [Other]http://www.openwall.com/lists/oss-security/2016/01/14/7
- [Other]http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- [Other]http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
- [Other]http://www.securityfocus.com/archive/1/537295/100/0/threaded
- [Other]http://www.securityfocus.com/bid/80695
- [Other]http://www.securitytracker.com/id/1034671
- [Other]http://www.ubuntu.com/usn/USN-2869-1
- [Other]https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/
- [Other]https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
- [Other]https://bto.bluecoat.com/security-advisory/sa109
- [Other]https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05247375
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
- [Other]https://security.FreeBSD.org/advisories/FreeBSD-SA-16:07.openssh.asc
- [Other]https://security.gentoo.org/glsa/201601-01
- [Other]https://support.apple.com/HT206167
- [Other]http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10734
- [Other]http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176516.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175592.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175676.html
- [Other]http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176349.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html
- [Other]http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html
- [Other]http://packetstormsecurity.com/files/135273/Qualys-Security-Advisory-OpenSSH-Overflow-Leak.html
- [Other]http://seclists.org/fulldisclosure/2016/Jan/44
- [Other]http://www.debian.org/security/2016/dsa-3446
- [Vendor advisory]http://www.openssh.com/txt/release-7.1p2
- [Other]http://www.openwall.com/lists/oss-security/2016/01/14/7
- [Other]http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- [Other]http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
- [Other]http://www.securityfocus.com/archive/1/537295/100/0/threaded
- [Other]http://www.securityfocus.com/bid/80695
- [Other]http://www.securitytracker.com/id/1034671
- [Other]http://www.ubuntu.com/usn/USN-2869-1
- [Other]https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/
- [Other]https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
- [Other]https://bto.bluecoat.com/security-advisory/sa109
- [Other]https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05247375
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680
- [Other]https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
- [Other]https://security.FreeBSD.org/advisories/FreeBSD-SA-16:07.openssh.asc
- [Other]https://security.gentoo.org/glsa/201601-01
- [Other]https://support.apple.com/HT206167
Related CVEs
Same vendor
- CVE-2022-48575 — A person with access to a Mac may be able to bypass Login Window (3.5 LOW)
- CVE-2022-26758 — A malicious application may cause unexpected changes in memory shared between processes (7.1 HIGH)
- CVE-2026-46843 — Vulnerability in Oracle REST Data Services (component: Core) (5.3 MEDIUM)
- CVE-2026-46842 — Vulnerability in Oracle REST Data Services (component: Core) (5.3 MEDIUM)
- CVE-2026-46841 — Vulnerability in Oracle REST Data Services (component: General) (5.3 MEDIUM)
Same CWE
- CVE-2026-47177 — Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support
- CVE-2026-47176 — Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support
- CVE-2026-44486 — Axios is a promise based HTTP client for the browser and Node.js (7.5 HIGH)
- CVE-2026-53912 — Cerebrate before version 1.37 exposed credential material from self-registration requests
- CVE-2026-49219 — ImageMagick is free and open-source software used for editing and manipulating digital images (5.5 MEDIUM)