Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 414
Alerts This Week
Warning Icon 1 414

Debian 8 LTS: DLA-1548-1 Moderate: Libssh Authentication Bypass Fix

debian lts
Calendar Grey October 18, 2018
Dist Debian Esm H88
Debian 8 has received a security patch for libssh to mitigate CVE-2018-10933, which pertains to a weakness allowing bypass of authentication mechanisms.
Peter Winter-Smith of NCC Group discovered that libssh, a tiny C SSH library, contains an authentication bypass vulnerability in the server code

Summary

We recommend that you upgrade your libssh packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

--
Ben Hutchings - Debian developer, member of kernel, installer and LTS teams


<pre><font face="Courier">Package: libssh
Version: 0.6.3-4+deb8u3
CVE ID: CVE-2018-10933
Debian Bug: 911149

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.