Bug#1052149: bookworm-pu: package openssh/1:9.2p1-2+deb12u1
Control: tags -1 confirmed
On Mon, 2023-09-18 at 08:59 +0100, Colin Watson wrote:
> https://bugs.debian.org/1042460 is a security issue affecting
> bookworm.
> The security team doesn't think it warrants a DSA, but thinks it's
> worth
> fixing in a point release. I agree.
>
> [ Impact ]
> Forwarding an SSH agent to a remote system may be exploitable by
> administrators of that remote system in complicated conditions. See
> https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt.
>
Please go ahead.
Regards,
Adam
Reply to: