"Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found"

A second Remote Code Execution (RCE) vulnerability has been found in OpenSSH in an analysis of the recently discovered "regreSSHion" flaw. The regreSSHion bug, discovered by Qualys, was believed to impact millions of OpenSSH servers. Openwall founder Alexander Peslyak has found another regreSSHion-related issue, which is a race condition in signal handling involving the 'privsep' child process. This article continues to discuss findings regarding the recently discovered OpenSSH bug.

SecurityWeek reports "Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found"

Submitted by grigby1

Submitted by Gregory Rigby on