Description
Microsoft Security Guidance CVE-2024-6387: OpenSSH regreSSHion
Executive Summary
Win32-OpenSSH is not affected by this vulnerability. Although Windows contains an OpenSSH component, the vulnerable code cannot be exploited or controlled by an adversary.
Discussion
Please open a discussion question to discuss this guide.
Affected Software
Not Applicable.
Advisory FAQ
Other Information
Reporting Security Issues
If you have found a potential security issue in Win32-OpenSSH, please see our Security Policy
Support
Support for Win32-OpenSSH is delivered via traditional Microsoft support agreements, including paid support, Microsoft Enterprise Agreements, and Microsoft Software Assurance. You can also pay for assisted support for Win32-OpenSSH by filing a support request for your problem.
For community support, you can ask questions about this issue on GitHub in the Win32-OpenSSH repository. This is located at https://github.com/PowerShell/Win32-OpenSSH/discussions.
Disclaimer
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
External Links
Revisions
V1.0 (July 11, 2024): Advisory published.
Version 1.0
Last Updated 2024-07-11