openssh-7.4p1-23.el7
エラータID: AXSA:2023-6280:07
Release date:
Wednesday, August 2, 2023 - 11:16
Subject:
openssh-7.4p1-23.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX,
and similar operating systems. It includes the core files necessary for both the
OpenSSH client and server.
Security Fix(es):
openssh: Remote code execution in ssh-agent PKCS#11 support (CVE-2023-38408)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
CVE(s):
CVE-2023-38408
Solution:
Update packages.
CVEs:
CVE-2023-38408
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
Additional Info:
N/A
Download:
SRPMS
- openssh-7.4p1-23.el7.src.rpm
MD5: b2500813de312c15d37071067c2ada25
SHA-256: 806a9bee68abdde2c7a74502547b589c1b66eb32aa8b5f2a7dbeec771f932d0c
Size: 2.73 MB
Asianux Server 7 for x86_64
- openssh-7.4p1-23.el7.x86_64.rpm
MD5: b78d40d969f4110af19549ef7bf35a88
SHA-256: c3a0fa1959b90c7adc4fe74ca94e669ee28b37071cc67e70435d8386eb659d0e
Size: 509.12 kB - openssh-askpass-7.4p1-23.el7.x86_64.rpm
MD5: 8ce68dcec7a846887bbf00741454b247
SHA-256: e2507e9e07533e3bdbc58ddad8ab6db62c813996413ba78f4bb3cd17cdcd665d
Size: 76.25 kB - openssh-clients-7.4p1-23.el7.x86_64.rpm
MD5: b5be4c43274bdae4f829adcde0642c91
SHA-256: 00e32ed71dc7eb88fb162a2b6f12126ee69c95a69a609379661003726f5993bc
Size: 653.95 kB - openssh-keycat-7.4p1-23.el7.x86_64.rpm
MD5: f77411d19a3ee6313d363d6ce9cf6147
SHA-256: b4fcb33d931167050de8c5866a2b2826db5e64da305b4793f35e402f593f1660
Size: 96.57 kB - openssh-server-7.4p1-23.el7.x86_64.rpm
MD5: 2e0680362fdf44f10776308898597809
SHA-256: d5b85ebee0cde4ee352657f3b6f26fd32d0fef6cc92290d54faabf701468422c
Size: 458.58 kB