Debian 10: DLA-3694-1 urgent: OpenSSH command injection and integrity issue
debian lts
December 26, 2023
Several vulnerabilities have been discovered in OpenSSH, an implementation of the SSH protocol suite
Topics Covered
Summary
CVE-2021-41617
It was discovered that sshd failed to correctly initialise supplemental
groups when executing an AuthorizedKeysCommand or
AuthorizedPrincipalsCommand, where a AuthorizedKeysCommandUser or
AuthorizedPrincipalsCommandUser directive has been set to run the command
as a different user. Instead these commands would inherit the groups that
sshd was started with.
CVE-2023-48795
Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the SSH
protocol is prone to a prefix truncation attack, known as the "Terrapin
attack". This attack allows a MITM attacker to effect a limited break of the
integrity of the early encrypted SSH transport protocol by sending extra
messages prior to the commencement of encryption, and deleting an equal
number of consecutive messages immediately after encryption starts.
Details can be found at https://terrapin-attack.com/
CVE-2023-51385
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: openssh
Version: 1:7.9p1-10+deb10u4
CVE ID: CVE-2021-41617 CVE-2023-48795 CVE-2023-51385
Debian Bug: 995130
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!