Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 730
Alerts This Week
Warning Icon 1 730

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

debian
Calendar Grey April 9, 2026
Debian Logo
Debian DSA-6204-1 reports critical flaw in OpenSSH affecting GSSAPIKeyExchange enabling remote DoS and code execution.
Jeremy Brown discovered a flaw in the GSSAPI Key Exchange patch applied in Debian to OpenSSH, an implementation of the SSH protocol suite, affecting non-default configurations with...

Summary

For the oldstable distribution (bookworm), this problem has been fixed
in version 1:9.2p1-2+deb12u9. This update includes fixes for
CVE-2025-61984 and CVE-2025-61985 which were queued for the Debian
bookworm 12.14 point release.

For the stable distribution (trixie), this problem has been fixed in
version 1:10.0p1-7+deb13u2.

We recommend that you upgrade your openssh packages.

For the detailed security status of openssh please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/openssh

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: openssh
CVE ID: CVE-2026-3497

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.