Updated libssh packages fix security vulnerabilities
Publication date: 29 Dec 2023Modification date: 29 Dec 2023
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-6004 , CVE-2023-6918 , CVE-2023-48795
Description
New version 0.10.6 for fixing security vulnerabilities of CVE-2023-6004,
CVE-2023-48795 [Prefix Truncation Attacks in SSH Specification (Terrapin
Attack)] and CVE-2023-6918.
References
- https://bugs.mageia.org/show_bug.cgi?id=32660
- https://www.libssh.org/2023/12/18/libssh-0-10-6-and-libssh-0-9-8-security-releases/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6004
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6918
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48795
SRPMS
9/core
- libssh-0.10.6-1.mga9