This vulnerability is marked as RESERVED by NVD. This means that the CVE-ID is reserved for future use by the CVE Numbering Authority (CNA) or a security researcher, but the details of it are not yet publicly available yet.
This page will reflect the classification results once they are available through NVD.
Any vendor information available is shown as below.
The default value of “StrictHostKeyChecking=no” has been used for kdump/ mkdumprd openssh integration. A remote malicious kdump server could use this flaw to impersonate the intended, correct kdump server to obtain security sensitive information (kdump core files).
| Name | Vendor | Version |
|---|---|---|
| Kexec-tools | Ubuntu/lucid | end of life |
| Kexec-tools | Ubuntu/maverick | end of life |
| Kexec-tools | Ubuntu/natty | end of life |
| Kexec-tools | Ubuntu/oneiric | end of life |
| Kexec-tools | Ubuntu/upstream | TBD |
| Kexec-tools | Ubuntu/devel | code-not-present |
| Kexec-tools | Ubuntu/hardy | end of life |