]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1b9d661) | patch
openssh: Securiry fix for CVE-2023-38408
authorShubham Kulkarni <skulkarni@mvista.com>
Wed, 6 Sep 2023 07:58:50 +0000 (13:28 +0530)
committerSteve Sakoman <steve@sakoman.com>
Wed, 6 Sep 2023 13:43:21 +0000 (03:43 -1000)
commit9242b8218858d2bebb3235929fea7e7235cd40f3
treee073883270a6c1175ecd1a813bcc34f1c3faa62btree
parent1b9d661a82211d6ffdd56e366cfbc3f3c247fd1ccommit | diff
openssh: Securiry fix for CVE-2023-38408

The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an
insufficiently trustworthy search path, leading to remote code
execution if an agent is forwarded to an attacker-controlled system.
(Code in /usr/lib is not necessarily safe for loading into ssh-agent.)
NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-38408

Upstream patches:
https://github.com/openssh/openssh-portable/commit/dee22129, https://github.com/openssh/openssh-portable/commit/099cdf59,
https://github.com/openssh/openssh-portable/commit/29ef8a04, https://github.com/openssh/openssh-portable/commit/892506b1,
https://github.com/openssh/openssh-portable/commit/0c111eb8, https://github.com/openssh/openssh-portable/commit/52a03e9f,
https://github.com/openssh/openssh-portable/commit/1fe16fd6, https://github.com/openssh/openssh-portable/commit/e0e8bee8,
https://github.com/openssh/openssh-portable/commit/8afaa7d7, https://github.com/openssh/openssh-portable/commit/1a4b9275,
https://github.com/openssh/openssh-portable/commit/4c1e3ce8, https://github.com/openssh/openssh-portable/commit/1f2731f5.

Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
13 files changed:
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-01.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-02.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-03.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-04.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-05.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-06.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-07.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-08.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-09.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-10.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-11.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh/CVE-2023-38408-12.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssh/openssh_8.2p1.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core