Advisories » MGASA-2023-0357

Updated libssh packages fix security vulnerabilities

Publication date: 29 Dec 2023
Modification date: 29 Dec 2023
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-6004 , CVE-2023-6918 , CVE-2023-48795

Description

New version 0.10.6 for fixing security vulnerabilities of CVE-2023-6004,
CVE-2023-48795 [Prefix Truncation Attacks in SSH Specification (Terrapin
Attack)] and CVE-2023-6918.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=32660
• https://www.libssh.org/2023/12/18/libssh-0-10-6-and-libssh-0-9-8-security-releases/
• https://www.cve.org/CVERecord?id=CVE-2023-6004
• https://www.cve.org/CVERecord?id=CVE-2023-6918
• https://www.cve.org/CVERecord?id=CVE-2023-48795

SRPMS

9/core

• libssh-0.10.6-1.mga9