1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5409-1] libssh security update

    From Moritz Muehlenhoff@21:1/5 to All on Tue May 23 14:00:01 2023
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5409-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff
    May 23, 2023 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : libssh
    CVE ID : CVE-2023-1667 CVE-2023-2283
    Debian Bug : 1035832

    Two security issues have been discovered in libssh, a tiny C SSH library:

    CVE-2023-1667

    Philip Turnbull discovered a NULL pointer dereference which could
    result in denial of service.

    CVE-2023-2283

    Kevin Backhouse discovered that pki_verify_data_signature() may
    fail to correctly validate authentication in memory pressure
    situations.

    For the stable distribution (bullseye), these problems have been fixed in version 0.9.7-0+deb11u1.

    We recommend that you upgrade your libssh packages.

    For the detailed security status of libssh please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/libssh

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmRsiBoACgkQEMKTtsN8 TjZY5w/+NUF6BrqMQqHEnFB+pTko58be+U3Au0EvRndBWoOdYIYAMC1upQWMAh0W aApXarK7PqaBmBRIWMHHFCY+VsRvriDWQcGReJyw91CuB6cgwLJ3pZ3BP2G4bOTR w+7YjOdXuim/nq9cTm45MtIIhUw0zwxJ1rejN5T3bb1ZeeoKTyxxHFy5M548YRg2 xR4h3C7N6FjegGU3tY2EjWVYWLhvlNLFRlWzoW1XJRoJz91Sv/UDVkoluD71NGAV LmopIixYG7WN1DPj0NxDTFg6S2ecg2iSx7kIwf5TvIqdm73US0x6CAzR5ie06MXE 53V/PpRKhOuK+8qv0XeI4uWVv7irZ2BcNk+e474IH4i2Gjsubzd8m4ddGY7lhj12 X2FnBO3OQgqWF0Ckn87h6a2O89cC+gCI8n9u4ROcT5iWKpD/2JtauNHi3S0XWyqr Tfv7r74fHNqJBa2D3VE8ZlmM6UXfTjVrn631wyX7c/WdqxM65J5fhQocwEWaAnRh Of8RWu0E/E4D5PKHctKg45lxTAW6X9DIPeaahjM+VvBaH6K6ugJ1J/3XKakryvyk 9VA0K6V2zu2EOaqJtj/IsxIZvHf8bCYoqpdPNHEab9xnzR9ChJjX+YLXZY2oF2sw t3lEhz4xFxS1sWCCQvriFeSmeiqadCmkFv7t4t58YdmNmfvezvg=
    =P0gj
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)