Package openssh
Status Vulnerable
Severity High
Type insufficient validation
Affected 7.9p1-1
Fixed Unknown
Current 8.0p1-1 [core]
Ticket Create
Created Fri Jan 11 15:29:21 2019
Issue Severity Remote Type Description
CVE-2018-20685 High Yes Insufficient validation
In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename.