csaf_opensuse - opensuse-su-2024:13569-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

rclone-1.65.1-1.1 on GA media

Notes

Title of the patch

rclone-1.65.1-1.1 on GA media

Description of the patch

These are all security issues fixed in the rclone-1.65.1-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-13569

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "moderate",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "rclone-1.65.1-1.1 on GA media",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "These are all security issues fixed in the rclone-1.65.1-1.1 package on the GA media of openSUSE Tumbleweed.",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "openSUSE-Tumbleweed-2024-13569",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13569-1.json",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2023-45286 page",
            url: "https://www.suse.com/security/cve/CVE-2023-45286/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2023-48795 page",
            url: "https://www.suse.com/security/cve/CVE-2023-48795/",
         },
      ],
      title: "rclone-1.65.1-1.1 on GA media",
      tracking: {
         current_release_date: "2024-06-15T00:00:00Z",
         generator: {
            date: "2024-06-15T00:00:00Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "openSUSE-SU-2024:13569-1",
         initial_release_date: "2024-06-15T00:00:00Z",
         revision_history: [
            {
               date: "2024-06-15T00:00:00Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rclone-1.65.1-1.1.aarch64",
                        product: {
                           name: "rclone-1.65.1-1.1.aarch64",
                           product_id: "rclone-1.65.1-1.1.aarch64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-bash-completion-1.65.1-1.1.aarch64",
                        product: {
                           name: "rclone-bash-completion-1.65.1-1.1.aarch64",
                           product_id: "rclone-bash-completion-1.65.1-1.1.aarch64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-zsh-completion-1.65.1-1.1.aarch64",
                        product: {
                           name: "rclone-zsh-completion-1.65.1-1.1.aarch64",
                           product_id: "rclone-zsh-completion-1.65.1-1.1.aarch64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "aarch64",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rclone-1.65.1-1.1.ppc64le",
                        product: {
                           name: "rclone-1.65.1-1.1.ppc64le",
                           product_id: "rclone-1.65.1-1.1.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-bash-completion-1.65.1-1.1.ppc64le",
                        product: {
                           name: "rclone-bash-completion-1.65.1-1.1.ppc64le",
                           product_id: "rclone-bash-completion-1.65.1-1.1.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-zsh-completion-1.65.1-1.1.ppc64le",
                        product: {
                           name: "rclone-zsh-completion-1.65.1-1.1.ppc64le",
                           product_id: "rclone-zsh-completion-1.65.1-1.1.ppc64le",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "ppc64le",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rclone-1.65.1-1.1.s390x",
                        product: {
                           name: "rclone-1.65.1-1.1.s390x",
                           product_id: "rclone-1.65.1-1.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-bash-completion-1.65.1-1.1.s390x",
                        product: {
                           name: "rclone-bash-completion-1.65.1-1.1.s390x",
                           product_id: "rclone-bash-completion-1.65.1-1.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-zsh-completion-1.65.1-1.1.s390x",
                        product: {
                           name: "rclone-zsh-completion-1.65.1-1.1.s390x",
                           product_id: "rclone-zsh-completion-1.65.1-1.1.s390x",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "s390x",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rclone-1.65.1-1.1.x86_64",
                        product: {
                           name: "rclone-1.65.1-1.1.x86_64",
                           product_id: "rclone-1.65.1-1.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-bash-completion-1.65.1-1.1.x86_64",
                        product: {
                           name: "rclone-bash-completion-1.65.1-1.1.x86_64",
                           product_id: "rclone-bash-completion-1.65.1-1.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "rclone-zsh-completion-1.65.1-1.1.x86_64",
                        product: {
                           name: "rclone-zsh-completion-1.65.1-1.1.x86_64",
                           product_id: "rclone-zsh-completion-1.65.1-1.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "openSUSE Tumbleweed",
                        product: {
                           name: "openSUSE Tumbleweed",
                           product_id: "openSUSE Tumbleweed",
                           product_identification_helper: {
                              cpe: "cpe:/o:opensuse:tumbleweed",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-1.65.1-1.1.aarch64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
            },
            product_reference: "rclone-1.65.1-1.1.aarch64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-1.65.1-1.1.ppc64le as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
            },
            product_reference: "rclone-1.65.1-1.1.ppc64le",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-1.65.1-1.1.s390x as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
            },
            product_reference: "rclone-1.65.1-1.1.s390x",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-1.65.1-1.1.x86_64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
            },
            product_reference: "rclone-1.65.1-1.1.x86_64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-bash-completion-1.65.1-1.1.aarch64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
            },
            product_reference: "rclone-bash-completion-1.65.1-1.1.aarch64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-bash-completion-1.65.1-1.1.ppc64le as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
            },
            product_reference: "rclone-bash-completion-1.65.1-1.1.ppc64le",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-bash-completion-1.65.1-1.1.s390x as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
            },
            product_reference: "rclone-bash-completion-1.65.1-1.1.s390x",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-bash-completion-1.65.1-1.1.x86_64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
            },
            product_reference: "rclone-bash-completion-1.65.1-1.1.x86_64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-zsh-completion-1.65.1-1.1.aarch64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
            },
            product_reference: "rclone-zsh-completion-1.65.1-1.1.aarch64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-zsh-completion-1.65.1-1.1.ppc64le as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
            },
            product_reference: "rclone-zsh-completion-1.65.1-1.1.ppc64le",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-zsh-completion-1.65.1-1.1.s390x as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
            },
            product_reference: "rclone-zsh-completion-1.65.1-1.1.s390x",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rclone-zsh-completion-1.65.1-1.1.x86_64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
            },
            product_reference: "rclone-zsh-completion-1.65.1-1.1.x86_64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-45286",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2023-45286",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A race condition in go-resty can result in HTTP request body disclosure across requests. This condition can be triggered by calling sync.Pool.Put with the same *bytes.Buffer more than once, when request retries are enabled and a retry occurs. The call to sync.Pool.Get will then return a bytes.Buffer that hasn't had bytes.Buffer.Reset called on it. This dirty buffer will contain the HTTP request body from an unrelated request, and go-resty will append the current HTTP request body to it, sending two bodies in one request. The sync.Pool in question is defined at package level scope, so a completely unrelated server could receive the request body.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2023-45286",
               url: "https://www.suse.com/security/cve/CVE-2023-45286",
            },
            {
               category: "external",
               summary: "SUSE Bug 1217625 for CVE-2023-45286",
               url: "https://bugzilla.suse.com/1217625",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2024-06-15T00:00:00Z",
               details: "moderate",
            },
         ],
         title: "CVE-2023-45286",
      },
      {
         cve: "CVE-2023-48795",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2023-48795",
            },
         ],
         notes: [
            {
               category: "general",
               text: "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
               "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
               "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
               "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2023-48795",
               url: "https://www.suse.com/security/cve/CVE-2023-48795",
            },
            {
               category: "external",
               summary: "SUSE Bug 1217950 for CVE-2023-48795",
               url: "https://bugzilla.suse.com/1217950",
            },
            {
               category: "external",
               summary: "SUSE Bug 1218708 for CVE-2023-48795",
               url: "https://bugzilla.suse.com/1218708",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-bash-completion-1.65.1-1.1.x86_64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.s390x",
                  "openSUSE Tumbleweed:rclone-zsh-completion-1.65.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2024-06-15T00:00:00Z",
               details: "important",
            },
         ],
         title: "CVE-2023-48795",
      },
   ],
}

cve-2023-45286

Vulnerability from cvelistv5

Published

2023-11-28 16:31

Modified

2024-08-28 20:01

Severity ?

Summary

A race condition in go-resty can result in HTTP request body disclosure across requests. This condition can be triggered by calling sync.Pool.Put with the same *bytes.Buffer more than once, when request retries are enabled and a retry occurs. The call to sync.Pool.Get will then return a bytes.Buffer that hasn't had bytes.Buffer.Reset called on it. This dirty buffer will contain the HTTP request body from an unrelated request, and go-resty will append the current HTTP request body to it, sending two bodies in one request. The sync.Pool in question is defined at package level scope, so a completely unrelated server could receive the request body.

References

▼	URL	Tags
	https://github.com/go-resty/resty/issues/743
	https://github.com/go-resty/resty/issues/739
	https://github.com/go-resty/resty/pull/745
	https://github.com/go-resty/resty/commit/577fed8730d79f583eb48dfc81674164e1fc471e
	https://pkg.go.dev/vuln/GO-2023-2328

Impacted products

	Vendor	Product	Version
	github.com/go-resty/resty/v2	github.com/go-resty/resty/v2	Version: 2.10.0 ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T20:21:15.309Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/go-resty/resty/issues/743",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/go-resty/resty/issues/739",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/go-resty/resty/pull/745",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/go-resty/resty/commit/577fed8730d79f583eb48dfc81674164e1fc471e",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://pkg.go.dev/vuln/GO-2023-2328",
               },
            ],
            title: "CVE Program Container",
         },
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-45286",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-08-28T20:00:00.708483Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-08-28T20:01:23.626Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://pkg.go.dev",
               defaultStatus: "unaffected",
               packageName: "github.com/go-resty/resty/v2",
               product: "github.com/go-resty/resty/v2",
               programRoutines: [
                  {
                     name: "handleRequestBody",
                  },
                  {
                     name: "Backoff",
                  },
                  {
                     name: "Request.Delete",
                  },
                  {
                     name: "Request.Execute",
                  },
                  {
                     name: "Request.Get",
                  },
                  {
                     name: "Request.Head",
                  },
                  {
                     name: "Request.Options",
                  },
                  {
                     name: "Request.Patch",
                  },
                  {
                     name: "Request.Post",
                  },
                  {
                     name: "Request.Put",
                  },
                  {
                     name: "Request.Send",
                  },
               ],
               vendor: "github.com/go-resty/resty/v2",
               versions: [
                  {
                     lessThan: "2.11.0",
                     status: "affected",
                     version: "2.10.0",
                     versionType: "semver",
                  },
               ],
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Logan Attwood (@lattwood)",
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "A race condition in go-resty can result in HTTP request body disclosure across requests. This condition can be triggered by calling sync.Pool.Put with the same *bytes.Buffer more than once, when request retries are enabled and a retry occurs. The call to sync.Pool.Get will then return a bytes.Buffer that hasn't had bytes.Buffer.Reset called on it. This dirty buffer will contain the HTTP request body from an unrelated request, and go-resty will append the current HTTP request body to it, sending two bodies in one request. The sync.Pool in question is defined at package level scope, so a completely unrelated server could receive the request body.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
                     lang: "en",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-01-04T18:41:48.460Z",
            orgId: "1bb62c36-49e3-4200-9d77-64a1400537cc",
            shortName: "Go",
         },
         references: [
            {
               url: "https://github.com/go-resty/resty/issues/743",
            },
            {
               url: "https://github.com/go-resty/resty/issues/739",
            },
            {
               url: "https://github.com/go-resty/resty/pull/745",
            },
            {
               url: "https://github.com/go-resty/resty/commit/577fed8730d79f583eb48dfc81674164e1fc471e",
            },
            {
               url: "https://pkg.go.dev/vuln/GO-2023-2328",
            },
         ],
         title: "HTTP request body disclosure in github.com/go-resty/resty/v2",
      },
   },
   cveMetadata: {
      assignerOrgId: "1bb62c36-49e3-4200-9d77-64a1400537cc",
      assignerShortName: "Go",
      cveId: "CVE-2023-45286",
      datePublished: "2023-11-28T16:31:21.078Z",
      dateReserved: "2023-10-06T17:06:26.221Z",
      dateUpdated: "2024-08-28T20:01:23.626Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-48795

Vulnerability from cvelistv5

Published

2023-12-18 00:00

Modified

2024-08-02 21:46

Severity ?

Summary

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

References

▼	URL	Tags
	https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
	https://matt.ucc.asn.au/dropbear/CHANGES
	https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
	https://www.netsarang.com/en/xshell-update-history/
	https://www.paramiko.org/changelog.html
	https://www.openssh.com/openbsd.html
	https://github.com/openssh/openssh-portable/commits/master
	https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ
	https://www.bitvise.com/ssh-server-version-history
	https://github.com/ronf/asyncssh/tags
	https://gitlab.com/libssh/libssh-mirror/-/tags
	https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/
	https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42
	https://www.openssh.com/txt/release-9.6
	https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/
	https://www.terrapin-attack.com
	https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25
	https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst
	https://thorntech.com/cve-2023-48795-and-sftp-gateway/
	https://github.com/warp-tech/russh/releases/tag/v0.40.2
	https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0
	https://www.openwall.com/lists/oss-security/2023/12/18/2
	https://twitter.com/TrueSkrillor/status/1736774389725565005
	https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d
	https://github.com/paramiko/paramiko/issues/2337
	https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg
	https://news.ycombinator.com/item?id=38684904
	https://news.ycombinator.com/item?id=38685286
	http://www.openwall.com/lists/oss-security/2023/12/18/3	mailing-list
	https://github.com/mwiede/jsch/issues/457
	https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6
	https://github.com/erlang/otp/releases/tag/OTP-26.2.1
	https://github.com/advisories/GHSA-45x7-px36-x8w8
	https://security-tracker.debian.org/tracker/source-package/libssh2
	https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg
	https://security-tracker.debian.org/tracker/CVE-2023-48795
	https://bugzilla.suse.com/show_bug.cgi?id=1217950
	https://bugzilla.redhat.com/show_bug.cgi?id=2254210
	https://bugs.gentoo.org/920280
	https://ubuntu.com/security/CVE-2023-48795
	https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/
	https://access.redhat.com/security/cve/cve-2023-48795
	https://github.com/mwiede/jsch/pull/461
	https://github.com/drakkan/sftpgo/releases/tag/v2.5.6
	https://github.com/libssh2/libssh2/pull/1291
	https://forum.netgate.com/topic/184941/terrapin-ssh-attack
	https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5
	https://github.com/rapier1/hpn-ssh/releases
	https://github.com/proftpd/proftpd/issues/456
	https://github.com/TeraTermProject/teraterm/releases/tag/v5.1
	https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15
	https://oryx-embedded.com/download/#changelog
	https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update
	https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22
	https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab
	https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3
	https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC
	https://crates.io/crates/thrussh/versions
	https://github.com/NixOS/nixpkgs/pull/275249
	http://www.openwall.com/lists/oss-security/2023/12/19/5	mailing-list
	https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc
	https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/
	http://www.openwall.com/lists/oss-security/2023/12/20/3	mailing-list
	http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html
	https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES
	https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES
	https://github.com/apache/mina-sshd/issues/445
	https://github.com/hierynomus/sshj/issues/916
	https://github.com/janmojzis/tinyssh/issues/81
	https://www.openwall.com/lists/oss-security/2023/12/20/3
	https://security-tracker.debian.org/tracker/source-package/trilead-ssh2
	https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/	vendor-advisory
	https://www.debian.org/security/2023/dsa-5586	vendor-advisory
	https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508
	https://www.theregister.com/2023/12/20/terrapin_attack_ssh
	https://filezilla-project.org/versions.php
	https://nova.app/releases/#v11.8
	https://roumenpetrov.info/secsh/#news20231220
	https://www.vandyke.com/products/securecrt/history.txt
	https://help.panic.com/releasenotes/transmit5/
	https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta
	https://github.com/PowerShell/Win32-OpenSSH/issues/2189
	https://winscp.net/eng/docs/history#6.2.2
	https://www.bitvise.com/ssh-client-version-history#933
	https://github.com/cyd01/KiTTY/issues/520
	https://www.debian.org/security/2023/dsa-5588	vendor-advisory
	https://github.com/ssh-mitm/ssh-mitm/issues/165
	https://news.ycombinator.com/item?id=38732005
	https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html	mailing-list
	https://security.gentoo.org/glsa/202312-16	vendor-advisory
	https://security.gentoo.org/glsa/202312-17	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/	vendor-advisory
	https://security.netapp.com/advisory/ntap-20240105-0004/
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/	vendor-advisory
	https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/	vendor-advisory
	https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html	mailing-list
	https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html	mailing-list
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/	vendor-advisory
	https://support.apple.com/kb/HT214084
	http://seclists.org/fulldisclosure/2024/Mar/21	mailing-list
	https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html	mailing-list
	http://www.openwall.com/lists/oss-security/2024/04/17/8	mailing-list
	http://www.openwall.com/lists/oss-security/2024/03/06/3	mailing-list

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T21:46:27.255Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://matt.ucc.asn.au/dropbear/CHANGES",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.netsarang.com/en/xshell-update-history/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.paramiko.org/changelog.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.openssh.com/openbsd.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/openssh/openssh-portable/commits/master",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.bitvise.com/ssh-server-version-history",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/ronf/asyncssh/tags",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://gitlab.com/libssh/libssh-mirror/-/tags",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.openssh.com/txt/release-9.6",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.terrapin-attack.com",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/warp-tech/russh/releases/tag/v0.40.2",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.openwall.com/lists/oss-security/2023/12/18/2",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://twitter.com/TrueSkrillor/status/1736774389725565005",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/paramiko/paramiko/issues/2337",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://news.ycombinator.com/item?id=38684904",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://news.ycombinator.com/item?id=38685286",
               },
               {
                  name: "[oss-security] 20231218 CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "http://www.openwall.com/lists/oss-security/2023/12/18/3",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/mwiede/jsch/issues/457",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/advisories/GHSA-45x7-px36-x8w8",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security-tracker.debian.org/tracker/source-package/libssh2",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security-tracker.debian.org/tracker/CVE-2023-48795",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://bugzilla.suse.com/show_bug.cgi?id=1217950",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://bugs.gentoo.org/920280",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://ubuntu.com/security/CVE-2023-48795",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://access.redhat.com/security/cve/cve-2023-48795",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/mwiede/jsch/pull/461",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/libssh2/libssh2/pull/1291",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/rapier1/hpn-ssh/releases",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/proftpd/proftpd/issues/456",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://oryx-embedded.com/download/#changelog",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://crates.io/crates/thrussh/versions",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/NixOS/nixpkgs/pull/275249",
               },
               {
                  name: "[oss-security] 20231219 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "http://www.openwall.com/lists/oss-security/2023/12/19/5",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
               },
               {
                  name: "[oss-security] 20231220 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "http://www.openwall.com/lists/oss-security/2023/12/20/3",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/apache/mina-sshd/issues/445",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/hierynomus/sshj/issues/916",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/janmojzis/tinyssh/issues/81",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.openwall.com/lists/oss-security/2023/12/20/3",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
               },
               {
                  name: "FEDORA-2023-0733306be9",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
               },
               {
                  name: "DSA-5586",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://www.debian.org/security/2023/dsa-5586",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://filezilla-project.org/versions.php",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://nova.app/releases/#v11.8",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://roumenpetrov.info/secsh/#news20231220",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.vandyke.com/products/securecrt/history.txt",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://help.panic.com/releasenotes/transmit5/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://winscp.net/eng/docs/history#6.2.2",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.bitvise.com/ssh-client-version-history#933",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/cyd01/KiTTY/issues/520",
               },
               {
                  name: "DSA-5588",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://www.debian.org/security/2023/dsa-5588",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://github.com/ssh-mitm/ssh-mitm/issues/165",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://news.ycombinator.com/item?id=38732005",
               },
               {
                  name: "[debian-lts-announce] 20231226 [SECURITY] [DLA 3694-1] openssh security update",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
               },
               {
                  name: "GLSA-202312-16",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://security.gentoo.org/glsa/202312-16",
               },
               {
                  name: "GLSA-202312-17",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://security.gentoo.org/glsa/202312-17",
               },
               {
                  name: "FEDORA-2023-20feb865d8",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
               },
               {
                  name: "FEDORA-2023-cb8c606fbb",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
               },
               {
                  name: "FEDORA-2023-e77300e4b5",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
               },
               {
                  name: "FEDORA-2023-b87ec6cf47",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
               },
               {
                  name: "FEDORA-2023-153404713b",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security.netapp.com/advisory/ntap-20240105-0004/",
               },
               {
                  name: "FEDORA-2024-3bb23c77f3",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
               },
               {
                  name: "FEDORA-2023-55800423a8",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
               },
               {
                  name: "FEDORA-2024-d946b9ad25",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
               },
               {
                  name: "FEDORA-2024-71c2c6526c",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
               },
               {
                  name: "FEDORA-2024-39a8c72ea9",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
               },
               {
                  name: "FEDORA-2024-ae653fb07b",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
               },
               {
                  name: "FEDORA-2024-2705241461",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
               },
               {
                  name: "FEDORA-2024-fb32950d11",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
               },
               {
                  name: "FEDORA-2024-7b08207cdb",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
               },
               {
                  name: "FEDORA-2024-06ebb70bdd",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
               },
               {
                  name: "[debian-lts-announce] 20240125 [SECURITY] [DLA 3718-1] php-phpseclib security update",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
               },
               {
                  name: "[debian-lts-announce] 20240125 [SECURITY] [DLA 3719-1] phpseclib security update",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
               },
               {
                  name: "FEDORA-2024-a53b24023d",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
               },
               {
                  name: "FEDORA-2024-3fd1bc9276",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://support.apple.com/kb/HT214084",
               },
               {
                  name: "20240313 APPLE-SA-03-07-2024-2 macOS Sonoma 14.4",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "http://seclists.org/fulldisclosure/2024/Mar/21",
               },
               {
                  name: "[debian-lts-announce] 20240425 [SECURITY] [DLA 3794-1] putty security update",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
               },
               {
                  name: "[oss-security] 20240417 Terrapin vulnerability in Jenkins CLI client",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "http://www.openwall.com/lists/oss-security/2024/04/17/8",
               },
               {
                  name: "[oss-security] 20240306 Multiple vulnerabilities in Jenkins plugins",
                  tags: [
                     "mailing-list",
                     "x_transferred",
                  ],
                  url: "http://www.openwall.com/lists/oss-security/2024/03/06/3",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-05-01T18:06:23.972272",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               url: "https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
            },
            {
               url: "https://matt.ucc.asn.au/dropbear/CHANGES",
            },
            {
               url: "https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
            },
            {
               url: "https://www.netsarang.com/en/xshell-update-history/",
            },
            {
               url: "https://www.paramiko.org/changelog.html",
            },
            {
               url: "https://www.openssh.com/openbsd.html",
            },
            {
               url: "https://github.com/openssh/openssh-portable/commits/master",
            },
            {
               url: "https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
            },
            {
               url: "https://www.bitvise.com/ssh-server-version-history",
            },
            {
               url: "https://github.com/ronf/asyncssh/tags",
            },
            {
               url: "https://gitlab.com/libssh/libssh-mirror/-/tags",
            },
            {
               url: "https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
            },
            {
               url: "https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
            },
            {
               url: "https://www.openssh.com/txt/release-9.6",
            },
            {
               url: "https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
            },
            {
               url: "https://www.terrapin-attack.com",
            },
            {
               url: "https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
            },
            {
               url: "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
            },
            {
               url: "https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
            },
            {
               url: "https://github.com/warp-tech/russh/releases/tag/v0.40.2",
            },
            {
               url: "https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
            },
            {
               url: "https://www.openwall.com/lists/oss-security/2023/12/18/2",
            },
            {
               url: "https://twitter.com/TrueSkrillor/status/1736774389725565005",
            },
            {
               url: "https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
            },
            {
               url: "https://github.com/paramiko/paramiko/issues/2337",
            },
            {
               url: "https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
            },
            {
               url: "https://news.ycombinator.com/item?id=38684904",
            },
            {
               url: "https://news.ycombinator.com/item?id=38685286",
            },
            {
               name: "[oss-security] 20231218 CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
               tags: [
                  "mailing-list",
               ],
               url: "http://www.openwall.com/lists/oss-security/2023/12/18/3",
            },
            {
               url: "https://github.com/mwiede/jsch/issues/457",
            },
            {
               url: "https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
            },
            {
               url: "https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
            },
            {
               url: "https://github.com/advisories/GHSA-45x7-px36-x8w8",
            },
            {
               url: "https://security-tracker.debian.org/tracker/source-package/libssh2",
            },
            {
               url: "https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
            },
            {
               url: "https://security-tracker.debian.org/tracker/CVE-2023-48795",
            },
            {
               url: "https://bugzilla.suse.com/show_bug.cgi?id=1217950",
            },
            {
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
            },
            {
               url: "https://bugs.gentoo.org/920280",
            },
            {
               url: "https://ubuntu.com/security/CVE-2023-48795",
            },
            {
               url: "https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
            },
            {
               url: "https://access.redhat.com/security/cve/cve-2023-48795",
            },
            {
               url: "https://github.com/mwiede/jsch/pull/461",
            },
            {
               url: "https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
            },
            {
               url: "https://github.com/libssh2/libssh2/pull/1291",
            },
            {
               url: "https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
            },
            {
               url: "https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
            },
            {
               url: "https://github.com/rapier1/hpn-ssh/releases",
            },
            {
               url: "https://github.com/proftpd/proftpd/issues/456",
            },
            {
               url: "https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
            },
            {
               url: "https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
            },
            {
               url: "https://oryx-embedded.com/download/#changelog",
            },
            {
               url: "https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
            },
            {
               url: "https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
            },
            {
               url: "https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
            },
            {
               url: "https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
            },
            {
               url: "https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
            },
            {
               url: "https://crates.io/crates/thrussh/versions",
            },
            {
               url: "https://github.com/NixOS/nixpkgs/pull/275249",
            },
            {
               name: "[oss-security] 20231219 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
               tags: [
                  "mailing-list",
               ],
               url: "http://www.openwall.com/lists/oss-security/2023/12/19/5",
            },
            {
               url: "https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
            },
            {
               url: "https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
            },
            {
               name: "[oss-security] 20231220 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
               tags: [
                  "mailing-list",
               ],
               url: "http://www.openwall.com/lists/oss-security/2023/12/20/3",
            },
            {
               url: "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
            },
            {
               url: "https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
            },
            {
               url: "https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
            },
            {
               url: "https://github.com/apache/mina-sshd/issues/445",
            },
            {
               url: "https://github.com/hierynomus/sshj/issues/916",
            },
            {
               url: "https://github.com/janmojzis/tinyssh/issues/81",
            },
            {
               url: "https://www.openwall.com/lists/oss-security/2023/12/20/3",
            },
            {
               url: "https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
            },
            {
               url: "https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
            },
            {
               name: "FEDORA-2023-0733306be9",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
            },
            {
               name: "DSA-5586",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://www.debian.org/security/2023/dsa-5586",
            },
            {
               url: "https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
            },
            {
               url: "https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
            },
            {
               url: "https://filezilla-project.org/versions.php",
            },
            {
               url: "https://nova.app/releases/#v11.8",
            },
            {
               url: "https://roumenpetrov.info/secsh/#news20231220",
            },
            {
               url: "https://www.vandyke.com/products/securecrt/history.txt",
            },
            {
               url: "https://help.panic.com/releasenotes/transmit5/",
            },
            {
               url: "https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
            },
            {
               url: "https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
            },
            {
               url: "https://winscp.net/eng/docs/history#6.2.2",
            },
            {
               url: "https://www.bitvise.com/ssh-client-version-history#933",
            },
            {
               url: "https://github.com/cyd01/KiTTY/issues/520",
            },
            {
               name: "DSA-5588",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://www.debian.org/security/2023/dsa-5588",
            },
            {
               url: "https://github.com/ssh-mitm/ssh-mitm/issues/165",
            },
            {
               url: "https://news.ycombinator.com/item?id=38732005",
            },
            {
               name: "[debian-lts-announce] 20231226 [SECURITY] [DLA 3694-1] openssh security update",
               tags: [
                  "mailing-list",
               ],
               url: "https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
            },
            {
               name: "GLSA-202312-16",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://security.gentoo.org/glsa/202312-16",
            },
            {
               name: "GLSA-202312-17",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://security.gentoo.org/glsa/202312-17",
            },
            {
               name: "FEDORA-2023-20feb865d8",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
            },
            {
               name: "FEDORA-2023-cb8c606fbb",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
            },
            {
               name: "FEDORA-2023-e77300e4b5",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
            },
            {
               name: "FEDORA-2023-b87ec6cf47",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
            },
            {
               name: "FEDORA-2023-153404713b",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
            },
            {
               url: "https://security.netapp.com/advisory/ntap-20240105-0004/",
            },
            {
               name: "FEDORA-2024-3bb23c77f3",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
            },
            {
               name: "FEDORA-2023-55800423a8",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
            },
            {
               name: "FEDORA-2024-d946b9ad25",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
            },
            {
               name: "FEDORA-2024-71c2c6526c",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
            },
            {
               name: "FEDORA-2024-39a8c72ea9",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
            },
            {
               url: "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
            },
            {
               name: "FEDORA-2024-ae653fb07b",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
            },
            {
               name: "FEDORA-2024-2705241461",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
            },
            {
               name: "FEDORA-2024-fb32950d11",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
            },
            {
               name: "FEDORA-2024-7b08207cdb",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
            },
            {
               name: "FEDORA-2024-06ebb70bdd",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
            },
            {
               name: "[debian-lts-announce] 20240125 [SECURITY] [DLA 3718-1] php-phpseclib security update",
               tags: [
                  "mailing-list",
               ],
               url: "https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
            },
            {
               name: "[debian-lts-announce] 20240125 [SECURITY] [DLA 3719-1] phpseclib security update",
               tags: [
                  "mailing-list",
               ],
               url: "https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
            },
            {
               name: "FEDORA-2024-a53b24023d",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
            },
            {
               name: "FEDORA-2024-3fd1bc9276",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
            },
            {
               url: "https://support.apple.com/kb/HT214084",
            },
            {
               name: "20240313 APPLE-SA-03-07-2024-2 macOS Sonoma 14.4",
               tags: [
                  "mailing-list",
               ],
               url: "http://seclists.org/fulldisclosure/2024/Mar/21",
            },
            {
               name: "[debian-lts-announce] 20240425 [SECURITY] [DLA 3794-1] putty security update",
               tags: [
                  "mailing-list",
               ],
               url: "https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
            },
            {
               name: "[oss-security] 20240417 Terrapin vulnerability in Jenkins CLI client",
               tags: [
                  "mailing-list",
               ],
               url: "http://www.openwall.com/lists/oss-security/2024/04/17/8",
            },
            {
               name: "[oss-security] 20240306 Multiple vulnerabilities in Jenkins plugins",
               tags: [
                  "mailing-list",
               ],
               url: "http://www.openwall.com/lists/oss-security/2024/03/06/3",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2023-48795",
      datePublished: "2023-12-18T00:00:00",
      dateReserved: "2023-11-20T00:00:00",
      dateUpdated: "2024-08-02T21:46:27.255Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

Vulnerability from csaf_opensuse

cve-2023-45286

Vulnerability from cvelistv5

cve-2023-48795

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature