CVE-2012-0814

medium

Published 2012-01-27 · Modified 2026-05-22

CVSS v3

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2

3.5

VIR risk

6.5

Description

The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

Predictions

Exploit likelihood

75%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-0814

OS impact

OS	Version	Status	Fixed in
debian	bookworm	fixed	`1:5.6p1-1`
debian	bullseye	fixed	`1:5.6p1-1`
debian	forky	fixed	`1:5.6p1-1`
debian	sid	fixed	`1:5.6p1-1`
debian	trixie	fixed	`1:5.6p1-1`

Application impact

Vendor	Product	Versions
openbsd	openssh	`{"endIncluding":"5.6"}`
openbsd	openssh	`1.2`
openbsd	openssh	`1.2.1`
openbsd	openssh	`1.2.2`
openbsd	openssh	`1.2.3`
openbsd	openssh	`1.2.27`
openbsd	openssh	`1.3`
openbsd	openssh	`1.5`
openbsd	openssh	`1.5.7`
openbsd	openssh	`1.5.8`
openbsd	openssh	`2`
openbsd	openssh	`2.1`
openbsd	openssh	`2.1.1`
openbsd	openssh	`2.2`
openbsd	openssh	`2.3`
openbsd	openssh	`2.3.1`
openbsd	openssh	`2.5`
openbsd	openssh	`2.5.1`
openbsd	openssh	`2.5.2`
openbsd	openssh	`2.9`
openbsd	openssh	`2.9.9`
openbsd	openssh	`2.9.9p2`
openbsd	openssh	`2.9p1`
openbsd	openssh	`2.9p2`
openbsd	openssh	`3.0`
openbsd	openssh	`3.0.1`
openbsd	openssh	`3.0.1p1`
openbsd	openssh	`3.0.2`
openbsd	openssh	`3.0.2p1`
openbsd	openssh	`3.0p1`
openbsd	openssh	`3.1`
openbsd	openssh	`3.1p1`
openbsd	openssh	`3.2`
openbsd	openssh	`3.2.2`
openbsd	openssh	`3.2.2p1`
openbsd	openssh	`3.2.3p1`
openbsd	openssh	`3.3`
openbsd	openssh	`3.3p1`
openbsd	openssh	`3.4`
openbsd	openssh	`3.4p1`
openbsd	openssh	`3.5`
openbsd	openssh	`3.5p1`
openbsd	openssh	`3.6`
openbsd	openssh	`3.6.1`
openbsd	openssh	`3.6.1p1`
openbsd	openssh	`3.6.1p2`
openbsd	openssh	`3.7`
openbsd	openssh	`3.7.1`
openbsd	openssh	`3.7.1p1`
openbsd	openssh	`3.7.1p2`
openbsd	openssh	`3.8`
openbsd	openssh	`3.8.1`
openbsd	openssh	`3.8.1p1`
openbsd	openssh	`3.9`
openbsd	openssh	`3.9.1`
openbsd	openssh	`3.9.1p1`
openbsd	openssh	`4.0`
openbsd	openssh	`4.0p1`
openbsd	openssh	`4.1`
openbsd	openssh	`4.1p1`
openbsd	openssh	`4.2`
openbsd	openssh	`4.2p1`
openbsd	openssh	`4.3`
openbsd	openssh	`4.3p1`
openbsd	openssh	`4.3p2`
openbsd	openssh	`4.4`
openbsd	openssh	`4.4p1`
openbsd	openssh	`4.5`
openbsd	openssh	`4.6`
openbsd	openssh	`4.7`
openbsd	openssh	`4.8`
openbsd	openssh	`4.9`
openbsd	openssh	`5.0`
openbsd	openssh	`5.1`
openbsd	openssh	`5.2`
openbsd	openssh	`5.3`
openbsd	openssh	`5.4`
openbsd	openssh	`5.5`

References

CWEs

CWE-255 CWE-532

Verify integrity in audit chain (admin only). AS-IS.