crackerjack  

Nice write-up and PoC for the "Not believed to be exploitable" recently patched double-free OpenSSH bug. Thanks jfrog!

#cybersecuritynews #PoC #doublefree #openssh #jfrog

https://jfrog.com/blog/openssh-pre-auth-double-free-cve-2023-25136-writeup-and-proof-of-concept/

CVE-2023-25136 OpenSSH Pre-Auth Double Free Writeup & PoC

Understanding the OpenSSH CVE-2023-25136 high vulnerability. Read our analysis with Proof-of-Concept, learn what's vulnerable, and discover remediations.

JFrog
Feb 9, 2023 at 2:27pmWeb