| version 1.6, 2023/07/12 12:50:01 |
version 1.7, 2023/07/19 14:13:13 |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| |
<li id="p010_ssh_agent"> |
| |
<strong>010: SECURITY FIX: July 19, 2023</strong> |
| |
<i>All architectures</i> |
| |
<br> |
| |
In ssh-agent(1)'s PKCS#11 provider support, remote execution was |
| |
possible due to controllable access in low-quality libraries. In |
| |
addition to fixing this, the ability to remotely load PKCS#11 |
| |
libraries is now disabled by default (re-enable with |
| |
'-Oallow-remote-pkcs11'). |
| |
<br> |
| |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/7.3/common/010_ssh_agent.patch.sig"> |
| |
A source code patch exists which remedies this problem.</a> |
| |
<p> |
| |
|
| </ul> |
</ul> |
| |
|
| <hr> |
<hr> |
![[BACK]](/icons/back.gif){kind=icon}
Return to errata73.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www