SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionImproper write operations in readonly mode allow for zero-length file creation
The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.(CVE-2017-15906)
SolutionRun 'yum update openssh' to update your system.