6 matches found
MiracleLinux 8 : openssh-8.0p1-13.el8 (AXSA:2022-3394:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3394:01 advisory. openssh: privilege escalation when AuthorizedKeysCommand or AuthorizedPrincipalsCommand are configured CVE-2021-41617 Tenable has extracted the preceding...
Advisory ROSA-SA-2025-3043
Software: openssh 8.0p1 OS: ROSA Virtualization 3.1 unaffected versions = openssh-8.0p1-26.0.2.2.rv31 affected versions openssh-8.0p1-26.0.2.2.rv31 CVE-ID: CVE-2020-14145 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the OpenSSH cryptographic security tool is related to a lack of service...
CLSA-2023-1688678532 Fix CVE(s): CVE-2021-41617
SECURITY UPDATE: Allows privilege escalation - debian/patches/CVE-2021-41617.patch: Added correct user group initialization. - CVE-2021-41617...
CLSA-2022-1649695900 Fix of CVE: CVE-2021-41617
CVE-2021-41617: add missing initgroups required before setresgid...
CLSA-2022-1649695840 Fix of CVE: CVE-2021-41617
CVE-2021-41617: add missing initgroups required before setresgid...
CLSA-2021-1639681866 Fix CVE(s): CVE-2021-41617
SECURITY UPDATE: helper programs may run with privilege escalation - debian/patches/CVE-2021-41617.patch: set initgroups before setresgid - CVE-2021-41617...