Lucene search
Ubuntu: Security Advisory (USN-6598-1)
🗓️ 26 Jan 2024 00:00:00Reported by Copyright (C) 2024 Greenbone AGType 
openvas🔗 plugins.openvas.org👁 10 Views
The update for 'paramiko' package(s) mitigates the SSH protocol prefix truncation vulnerability known as the Terrapin attack
Show more
| Reporter | Title | Published | Views | Family All 200 |
|---|---|---|---|---|
 | Rogue Session Attack (Terrapin) | 19 Dec 202306:46 | – | veracode |
| Prefix Truncation Attack (Terrapin Attack) | 19 Dec 202309:12 | – | veracode |
 | SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssh (SUSE-SU-2023:4902-1) | 21 Dec 202300:00 | – | nessus |
| Fedora 39 : podman-tui (2023-20feb865d8) | 28 Dec 202300:00 | – | nessus |
| Fedora 39 : putty (2024-d946b9ad25) | 10 Jan 202400:00 | – | nessus |
| Amazon Linux 2023 : libssh, libssh-config, libssh-devel (ALAS2023-2024-468) | 8 Jan 202400:00 | – | nessus |
| Fedora 38 : putty (2024-71c2c6526c) | 10 Jan 202400:00 | – | nessus |
| EulerOS 2.0 SP9 : libssh2 (EulerOS-SA-2024-1178) | 8 Feb 202400:00 | – | nessus |
| EulerOS 2.0 SP9 : libssh2 (EulerOS-SA-2024-1198) | 8 Feb 202400:00 | – | nessus |
| Oracle Linux 9 : buildah (ELSA-2024-1150) | 7 Mar 202400:00 | – | nessus |
10
| Source | Link |
|---|---|
| ubuntu | www.ubuntu.com/security/notices/USN-6598-1 |
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.12.2024.6598.1");
script_cve_id("CVE-2023-48795");
script_tag(name:"creation_date", value:"2024-01-26 04:09:26 +0000 (Fri, 26 Jan 2024)");
script_version("2024-02-02T05:06:10+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:10 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"5.4");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:N/I:C/A:N");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-12-28 18:26:44 +0000 (Thu, 28 Dec 2023)");
script_name("Ubuntu: Security Advisory (USN-6598-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(20\.04\ LTS|22\.04\ LTS|23\.10)");
script_xref(name:"Advisory-ID", value:"USN-6598-1");
script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-6598-1");
script_tag(name:"summary", value:"The remote host is missing an update for the 'paramiko' package(s) announced via the USN-6598-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Fabian Baumer, Marcus Brinkmann, Jorg Schwenk discovered that the SSH
protocol was vulnerable to a prefix truncation attack. If a remote attacker
was able to intercept SSH communications, extension negotiation messages
could be truncated, possibly leading to certain algorithms and features
being downgraded. This issue is known as the Terrapin attack. This update
adds protocol extensions to mitigate this issue.");
script_tag(name:"affected", value:"'paramiko' package(s) on Ubuntu 20.04, Ubuntu 22.04, Ubuntu 23.10.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "UBUNTU20.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"python3-paramiko", ver:"2.6.0-2ubuntu0.3", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU22.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"python3-paramiko", ver:"2.9.3-0ubuntu1.2", rls:"UBUNTU22.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU23.10") {
if(!isnull(res = isdpkgvuln(pkg:"python3-paramiko", ver:"2.12.0-2ubuntu1.23.10.2", rls:"UBUNTU23.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo26 Jan 2024 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS35.9
EPSS0.95381