VulnerableCode Package Details - pkg:deb/debian/openssh@1:10.1p1-1?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/openssh@1:10.1p1-1?distro=trixie

purl	pkg:deb/debian/openssh@1:10.1p1-1?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-a7m6-uqbt-nqd9	openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand	CVE-2025-61985
VCID-wga4-sqwk-4bfj	openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand	CVE-2025-61984

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-12T18:15:09.058325+00:00	Debian Importer	Fixing	VCID-a7m6-uqbt-nqd9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T18:15:08.966480+00:00	Debian Importer	Fixing	VCID-wga4-sqwk-4bfj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:48:54.913574+00:00	Debian Importer	Fixing	VCID-a7m6-uqbt-nqd9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:48:54.855484+00:00	Debian Importer	Fixing	VCID-wga4-sqwk-4bfj	https://security-tracker.debian.org/tracker/data/json	38.1.0