OpenSSH 10.4 Released with Critical Security Fixes

OpenSSH 10.4 Released with Critical Security Fixes

First seen 6 Jul 2026, 15:23 UTC Feeds2.FeedburnerCybersecuritynews 84% similarity 57.8

Article Content

Browse articles
ThreatCluster

On July 6, 2026, OpenSSH released version 10.4, addressing eight security vulnerabilities, including significant flaws in sftp that could allow malicious servers to redirect downloads. The vulnerabilities were identified by the Swival Security Scanner, highlighting risks for Unix and Linux system operators. The release also includes bug corrections and new features, such as early post-quantum cryptography support. System administrators are advised to update to this version to mitigate potential exploitation. The vulnerabilities affect core utilities within OpenSSH, which is widely used for secure remote access.

Key Points: • OpenSSH 10.4 includes eight security fixes, crucial for Unix and Linux systems. • Two vulnerabilities in sftp could allow malicious servers to manipulate file downloads. • System administrators are urged to upgrade to version 10.4 to prevent exploitation.

ThreatCluster AI

Timeline

2026-07-06
OpenSSH 10.4 released
Version 10.4 launched with eight security fixes and new features, including post-quantum cryptography support.
Feeds2.Feedburner
2026-07-06
Security vulnerabilities disclosed
The release addresses multiple vulnerabilities in core utilities, particularly in sftp, which could be exploited by malicious servers.
Cybersecuritynews

Community

Browse all →