Advisory: CLSA-2024:1709561144
OS: CentOS 8.4 ELS
Public date: 2024-03-04 09:05:46
Project: libssh
Version: 0.9.4-3.el8.tuxcare.els3
Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2024-1709561144.html
- CVE-2023-6004: fix the possibility of injections through a hostname parameter in the ProxyCommand/ProxyJump features - CVE-2023-6918: fix the issue when unchecked return values for digests may cause DoS
Update command: dnf update libssh*
libssh-0.9.4-3.el8.tuxcare.els3.i686.rpm libssh-0.9.4-3.el8.tuxcare.els3.x86_64.rpm libssh-config-0.9.4-3.el8.tuxcare.els3.noarch.rpm libssh-devel-0.9.4-3.el8.tuxcare.els3.i686.rpm libssh-devel-0.9.4-3.el8.tuxcare.els3.x86_64.rpm