4 matches found
[SECURITY] [DSA 5750-1] python-asyncssh security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5750-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 18, 2024 https://www.debian.org/security/faq -...
openSUSE Security Advisory (SUSE-SU-2024:0558-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:0543-1 Security update for libssh2_org
This update for libssh2org fixes the following issues: - Always add the KEX pseudo-methods 'ext-info-c' and '[email protected]' when configuring custom method list. bsc1218971, CVE-2023-48795 The strict-kex extension is announced in the list of available KEX methods. However, when the...
Updated dropbear package fixes a security vulnerability
Parts of the SSH specification are vulnerable to a novel prefix truncation attack a.k.a. Terrapin attack, which allows a man-in-the-middle attacker to strip an arbitrary number of messages right after the initial key exchange, breaking SSH extension negotiation RFC8308 in the process and thus...