Ubuntu 26.04 LTS sslh Low File Overwrite Risk USN-8360-1 CVE-2025-52936
ubuntu
June 1, 2026
sslh could be made to overwrite files.
Summary
sslh could be made to overwrite files.
Software Description:
- sslh: Applicative protocol multiplexer
Details:
It was discovered that sslh did not properly handle symbolic
links when writing its PID file. A local attacker could
possibly use this issue to overwrite arbitrary files.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 26.04 LTS
sslh 2.1.4-1ubuntu0.26.04.1
Ubuntu 25.10
sslh 2.1.4-1ubuntu0.25.10.1
Ubuntu 24.04 LTS
sslh 1.22c-1ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 22.04 LTS
sslh 1.20-1+deb11u1build0.22.04.1
Ubuntu 20.04 LTS
sslh 1.20-1+deb11u1build0.20.04.1
Available with Ubuntu Pro
Ubuntu 18.04 LTS
sslh 1.18-1ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 16.04 LTS
sslh 1.17-2ubuntu0.1~esm1
Available with Ubuntu Pro
After a standard system update you need to restart sslh to
make all the necessary changes.References
https://ubuntu.com/security/notices/USN-8360-1
CVE-2025-52936
PREVIOUS 
NEXT Severity
low
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8360-1
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!