VulnerableCode Package Details - pkg:ebuild/net-misc/openssh@4.7_p1-r6

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:ebuild/net-misc/openssh@4.7_p1-r6

Essentials
History (2)

purl	pkg:ebuild/net-misc/openssh@4.7_p1-r6

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-fy7d-81ah-fug2	OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.	CVE-2008-1483
VCID-p6kp-cqcx-e3bt	OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.	CVE-2008-1657

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-05T17:27:30.834280+00:00	Gentoo Importer	Fixing	VCID-p6kp-cqcx-e3bt	https://security.gentoo.org/glsa/200804-03	38.6.0
2026-06-05T17:27:30.816811+00:00	Gentoo Importer	Fixing	VCID-fy7d-81ah-fug2	https://security.gentoo.org/glsa/200804-03	38.6.0