openssh-7.4p1-23.el7
エラータID: AXSA:2023-6280:07
リリース日:
2023/08/02 Wednesday - 11:16
題名:
openssh-7.4p1-23.el7
影響のあるチャネル:
Asianux Server 7 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- OpenSSH の ssh-agent には、PKCS#11 機能がロードする共有ライブラリ
の検索パスに問題があるため、リモートの攻撃者により、攻撃者が制御可能
なシステムへの ssh-agent を用いた通信の転送を介して、任意のコードの
実行を可能とする脆弱性が存在します。(CVE-2023-38408)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2023-38408
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
追加情報:
N/A
ダウンロード:
SRPMS
- openssh-7.4p1-23.el7.src.rpm
MD5: b2500813de312c15d37071067c2ada25
SHA-256: 806a9bee68abdde2c7a74502547b589c1b66eb32aa8b5f2a7dbeec771f932d0c
Size: 2.73 MB
Asianux Server 7 for x86_64
- openssh-7.4p1-23.el7.x86_64.rpm
MD5: b78d40d969f4110af19549ef7bf35a88
SHA-256: c3a0fa1959b90c7adc4fe74ca94e669ee28b37071cc67e70435d8386eb659d0e
Size: 509.12 kB - openssh-askpass-7.4p1-23.el7.x86_64.rpm
MD5: 8ce68dcec7a846887bbf00741454b247
SHA-256: e2507e9e07533e3bdbc58ddad8ab6db62c813996413ba78f4bb3cd17cdcd665d
Size: 76.25 kB - openssh-clients-7.4p1-23.el7.x86_64.rpm
MD5: b5be4c43274bdae4f829adcde0642c91
SHA-256: 00e32ed71dc7eb88fb162a2b6f12126ee69c95a69a609379661003726f5993bc
Size: 653.95 kB - openssh-keycat-7.4p1-23.el7.x86_64.rpm
MD5: f77411d19a3ee6313d363d6ce9cf6147
SHA-256: b4fcb33d931167050de8c5866a2b2826db5e64da305b4793f35e402f593f1660
Size: 96.57 kB - openssh-server-7.4p1-23.el7.x86_64.rpm
MD5: 2e0680362fdf44f10776308898597809
SHA-256: d5b85ebee0cde4ee352657f3b6f26fd32d0fef6cc92290d54faabf701468422c
Size: 458.58 kB