[Debian] Critical CVE: CVE-2023-38408 openssh: an insufficiently trustworthy search path
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
High
|
hqbai |
Bug Description
CVE-2023-38408: https:/
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
Base Score: Critical
Reference:
['openssh-
CVE References
Changed in starlingx: | |
assignee: | nobody → hqbai (hbai) |
Fix proposed to branch: master /review. opendev. org/c/starlingx /tools/ +/899015
Review: https:/