Debian Security Update DSA-4322 libssh - security update

Thread starter LinuxBot
Start date Oct 18, 2018

LinuxBot

Member

Oct 18, 2018

Peter Winter-Smith of NCC Group discovered that libssh, a tiny C SSH library, contains an authentication bypass vulnerability in the server code. An attacker can take advantage of this flaw to successfully authenticate without any credentials by presenting the server an SSH2_MSG_USERAUTH_SUCCESS message in place of the SSH2_MSG_USERAUTH_REQUEST message which the server would expect to initiate authentication.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 969 (members: 7, guests: 962)

Latest posts

I
I need the name for an app, but don't know the app LMAO (im a noob)
- Latest: InvaderSumo
- A moment ago
General Linux Questions
firefox "server not found" problem
- Latest: GatorsFan
- 14 minutes ago
Getting Started
E
Solved Battling to expand partition
- Latest: etcetera
- 41 minutes ago
Ubuntu forum
E
Why doesn't the dd command produce a bootable clone disk?
- Latest: etcetera
- 45 minutes ago
General Linux Questions
I
Maltego
- Latest: InvaderSumo
- 53 minutes ago
General Linux Questions

Top