version 1.6, 2023/07/12 12:50:01 |
version 1.7, 2023/07/19 14:13:13 |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
|
<li id="p010_ssh_agent"> |
|
<strong>010: SECURITY FIX: July 19, 2023</strong> |
|
<i>All architectures</i> |
|
<br> |
|
In ssh-agent(1)'s PKCS#11 provider support, remote execution was |
|
possible due to controllable access in low-quality libraries. In |
|
addition to fixing this, the ability to remotely load PKCS#11 |
|
libraries is now disabled by default (re-enable with |
|
'-Oallow-remote-pkcs11'). |
|
<br> |
|
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/7.3/common/010_ssh_agent.patch.sig"> |
|
A source code patch exists which remedies this problem.</a> |
|
<p> |
|
|
</ul> |
</ul> |
|
|
<hr> |
<hr> |