OpenSSH 9.3p2 released

by
from OpenBSD Journal on (#6D3W3)
As announced by Damien Miller:

"We've just made an OpenSSH release to fix a remotely exploitable RCE vulnerability in ssh-agent's PKCS#11 support (CVE-2023-38408). Details at https://openssh.com/releasenotes.html#9.3p2

Thanks to the Qualys Security Advisory Team for finding and reporting this bug."

This appears to impact every version of OpenSSH's ssh-agent from 5.5 onwards.

External Content
Source RSS or Atom Feed
Feed Location http://undeadly.org/cgi?action=rss
Feed Title OpenBSD Journal
Feed Link http://undeadly.org/
Reply 0 comments