Advisory: CLSA-2023:1691576279
OS: Ubuntu 16.04 ELS
Public date: 2023-08-09 06:18:01
Project: openssh
Version: 2:7.2p2-4ubuntu2.10+tuxcare.els2
Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2023-1691576279.html
* SECURITY UPDATE: helper programs can dlopen()/dlclose() any libraries from /usr/lib - debian/patches/CVE-2023-38408-Ensure-FIDO-PKCS11-libraries-contain-expect.patch: checks libraries before dlopen - debian/patches/CVE-2023-38408-Separate-ssh-pkcs11-helpers-for-each-p11-mo.patch: separate ssh-pkcs11-helpers for each p11 module - CVE-2023-38408
Update command: apt-get update apt-get --only-upgrade install openssh*
openssh-client_7.2p2-4ubuntu2.10+tuxcare.els2_amd64.deb openssh-client-ssh1_7.2p2-4ubuntu2.10+tuxcare.els2_amd64.deb openssh-server_7.2p2-4ubuntu2.10+tuxcare.els2_amd64.deb openssh-sftp-server_7.2p2-4ubuntu2.10+tuxcare.els2_amd64.deb ssh_7.2p2-4ubuntu2.10+tuxcare.els2_all.deb ssh-askpass-gnome_7.2p2-4ubuntu2.10+tuxcare.els2_amd64.deb ssh-krb5_7.2p2-4ubuntu2.10+tuxcare.els2_all.deb