Safeguard
Tag

openssh

Safeguard articles tagged "openssh" — guides, analysis, and best practices for software supply chain and application security.

8 articles

Vulnerability Analysis

Terrapin Attack (CVE-2023-48795) Explained: SSH's Prefix Truncation Flaw

CVE-2023-48795, the Terrapin attack, is a protocol-level flaw letting a MITM silently truncate the start of an SSH session. Here is how it works, what it downgrades, and how to fix it.

Jul 8, 20267 min read
Vulnerability Analysis

regreSSHion (CVE-2024-6387) Explained: A Signal-Handler Race That Reopened an Old OpenSSH RCE

CVE-2024-6387, regreSSHion, is an unauthenticated remote code execution flaw in OpenSSH's sshd caused by a signal-handler race — a regression of a bug fixed back in 2006.

Jul 7, 20266 min read
Vulnerability Management

regreSSHion revisited: defending against CVE-2024-6387 in 2026

How the regreSSHion race condition in OpenSSH sshd reintroduced an unauthenticated RCE on glibc Linux, what the patch trajectory looked like, and the supply chain habits it should change.

May 12, 20266 min read
Vulnerability Analysis

regreSSHion OpenSSH RCE vulnerability CVE-2024-6387

CVE-2024-6387 "regreSSHion" is a signal handler race condition in OpenSSH's sshd enabling unauthenticated root RCE on glibc-based Linux systems.

May 5, 20268 min read
Vulnerability Analysis

Terrapin SSH protocol downgrade attack explained

Terrapin (CVE-2023-48795) lets an on-path attacker silently strip packets from SSH handshakes. Here's how the downgrade works and how to check exposure.

May 5, 20266 min read
Vulnerability Analysis

OpenSSH forwarded ssh-agent RCE (CVE-2023-38408)

CVE-2023-38408 lets a malicious SSH server hijack a forwarded ssh-agent to run code on the client. Impact, affected versions, and fixes.

Jan 15, 20267 min read
Vulnerability Analysis

OpenSSH agent forwarding RCE (CVE-2016-10009)

A malicious or compromised SSH server could abuse forwarded ssh-agent connections to load arbitrary PKCS#11 modules and run code on the client.

Jan 15, 20267 min read
Vulnerability Analysis

regreSSHion: CVE-2024-6387 OpenSSH Remote Code Execution

A regression in OpenSSH's signal handler reintroduced a vulnerability from 2006, enabling unauthenticated remote code execution on glibc-based Linux systems. Here's what you need to know.

Jul 1, 20246 min read
openssh — Safeguard Blog