CVE-2019-6109: OpenSSH has a vulnerability in the scp client utility. Due to missing character encoding in the progress display, the object name can be used to manipulate the client output, for example to employ ANSI codes to hide additional files being transferred. CVE-2019-6110: OpenSSH has a vulnerability in the scp client utility. Due to accepting and displaying arbitrary stderr output from the scp server, a malicious server can manipulate the client output, for example to employ ANSI codes to hide additional files being transferred.
Unable to check for sanity: > no match for package: net-misc/openssh-7.9_p1-r4
Unable to check for sanity: > dependent bug #675522 has errors
Resetting sanity check; package list is empty or all packages are done.