Explore top 10 tips to secure your open-source projects now. Read More
×
Paramiko could allow unintended access to network services.
Software Description:
- paramiko: Python SSH2 library
Details:
USN-3796-1 fixed a vulnerability in paramiko. This update provides
the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
Daniel Hoffman discovered that Paramiko incorrectly handled
authentication when being used as a server. A remote attacker could
use this issue to bypass authentication without any credentials.
The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 ESM: python-paramiko 1.7.7.1-2ubuntu1.2 After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-3796-2
https://ubuntu.com/security/notices/USN-3796-1
CVE-2018-1000805
Get the latest Linux and open source security news straight to your inbox.