Advisory: CLSA-2023:1691576488
OS: Ubuntu 18.04 ELS
Public date: 2023-08-09 06:21:30
Project: openssh
Version: 1:7.6p1-4ubuntu0.7+tuxcare.els2
Errata link: https://errata.cloudlinux.com/ubuntu18-els/CLSA-2023-1691576488.html
* SECURITY UPDATE: helper programs can dlopen()/dlclose() any libraries from /usr/lib - debian/patches/CVE-2023-38408-Ensure-FIDO-PKCS11-libraries-contain-expect.patch: checks libraries before dlopen - debian/patches/CVE-2023-38408-Separate-ssh-pkcs11-helpers-for-each-p11-mo.patch: separate ssh-pkcs11-helpers for each p11 module - CVE-2023-38408
Update command: apt-get update apt-get --only-upgrade install openssh*
openssh-client_7.6p1-4ubuntu0.7+tuxcare.els2_amd64.deb openssh-server_7.6p1-4ubuntu0.7+tuxcare.els2_amd64.deb openssh-sftp-server_7.6p1-4ubuntu0.7+tuxcare.els2_amd64.deb ssh_7.6p1-4ubuntu0.7+tuxcare.els2_all.deb ssh-askpass-gnome_7.6p1-4ubuntu0.7+tuxcare.els2_amd64.deb