Bug 7160 - [Anolis OS 23] Bugfix for CVE-2023-38408
Summary: [Anolis OS 23] Bugfix for CVE-2023-38408
Status: RESOLVED FIXED
Alias: None
Product: Anolis OS 23
Classification: Anolis OS
Component: BaseOS Packages (show other bugs) BaseOS Packages
Version: unspecified
Hardware: All Linux
: P2-High S2-major
Target Milestone: ---
Assignee: happy_orange
QA Contact: bolong_tbl
URL:
Whiteboard:
Keywords: CVE
Depends on:
Blocks:
 
Reported: 2023-11-07 15:57 UTC by 小龙
Modified: 2023-11-07 16:00 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description 小龙 admin 2023-11-07 15:57:53 UTC 
Description:
OpenSSH中发现一个漏洞。OpenSSH中ssh-agent中的PKCS#11功能具有不够可信的搜索路径,如果代理被转发到攻击者控制的系统,则会导致远程代码执行(/usr/lib中的代码不一定可以安全地加载到ssh代理)。此缺陷允许攻击者控制服务器上转发的代理套接字,并能够写入客户端主机的文件系统,从而以运行ssh代理的用户的权限执行任意代码。

Broken commit info:

Bugfix commit info:
https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d
https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8
https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca