all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6592-1: libssh vulnerabilities

Add to bookmarks
Jan. 22, 2024, 1:05 p.m. |

Ubuntu security notices ubuntu.com

It was discovered that libssh incorrectly handled the ProxyCommand and the
ProxyJump features. A remote attacker could possibly use this issue to
inject malicious code into the command of the features mentioned through
the hostname parameter. (CVE-2023-6004)

It was discovered that libssh incorrectly handled return codes when
performing message digest operations. A remote attacker could possibly use
this issue to cause libssh to crash, obtain sensitive information, or
execute arbitrary code. (CVE-2023-6918)

attacker code command cve digest features inject issue libssh malicious message message digest operations parameter performing proxycommand return usn vulnerabilities

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6778-1: Linux kernel vulnerabilities 2 days, 13 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6777-1: Linux kernel vulnerabilities 2 days, 13 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6776-1: Linux kernel vulnerabilities 2 days, 14 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6775-1: Linux kernel vulnerabilities 2 days, 15 hours ago | ubuntu.com
attacker broadcom crash cve +20
USN-6774-1: Linux kernel vulnerabilities 2 days, 16 hours ago | ubuntu.com
attacker broadcom crash cve +18
USN-6773-1: .NET vulnerabilities 2 days, 17 hours ago | ubuntu.com
attacker code code execution cve +10
USN-6766-2: Linux kernel vulnerabilities 3 days, 15 hours ago | ubuntu.com
action attacker conditions crash +19
USN-6772-1: strongSwan vulnerability 4 days, 19 hours ago | ubuntu.com
access access controls attacker bypass +6
USN-6767-2: Linux kernel (BlueField) vulnerabilities 4 days, 21 hours ago | ubuntu.com
attacker compromise crash cve +18

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India
View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190
View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal
View on infosec-jobs.com