Copssh server 8.8.0 (security)

release date:

2025-02-19

Changelog

OpenSSH 9.9p2 with security patches

* Fix CVE-2025-26465 - ssh(1) in OpenSSH versions 6.8p1 to 9.9p1
  (inclusive) contained a logic error that allowed an on-path
  attacker (a.k.a MITM) to impersonate any server when the
  VerifyHostKeyDNS option is enabled. This option is off by default.

* Fix CVE-2025-26466 - sshd(8) in OpenSSH versions 9.5p1 to 9.9p1
  (inclusive) is vulnerable to a memory/CPU denial-of-service related
  to the handling of SSH2_MSG_PING packets. This condition may be
  mitigated using the existing PerSourcePenalties feature.

component name	component version	component license	component source
OpenSSH	9.9p2	OpenSSH license
OpenSSL	3.0.15	OpenSSL license
Cygwin	3.5.7	Cygwin license (GPL/LGPL)	Source code for Cygwin
Copssh Server Admin GUI	1.0.2	Itefix EULA
Copssh server	8.8.0	Itefix EULA

2025

Release news

itefix.net

Copssh server 8.8.0 (security)

Release news

Free Software Highlights

Featured product

Nagwin - Nagios Core for Windows