Test ID:	1.3.6.1.4.1.25623.1.1.12.2024.6565.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-6565-1)
Summary:	The remote host is missing an update for the 'openssh' package(s) announced via the USN-6565-1 advisory.
Description:	Summary: The remote host is missing an update for the 'openssh' package(s) announced via the USN-6565-1 advisory. Vulnerability Insight: It was discovered that OpenSSH incorrectly handled supplemental groups when running helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand as a different user. An attacker could possibly use this issue to escalate privileges. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-41617) It was discovered that OpenSSH incorrectly added destination constraints when PKCS#11 token keys were added to ssh-agent, contrary to expectations. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 23.04. (CVE-2023-51384) It was discovered that OpenSSH incorrectly handled user names or host names with shell metacharacters. An attacker could possibly use this issue to perform OS command injection. (CVE-2023-51385) Affected Software/OS: 'openssh' package(s) on Ubuntu 20.04, Ubuntu 22.04, Ubuntu 23.04, Ubuntu 23.10. Solution: Please install the updated package(s). CVSS Score: 4.4 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2021-41617 https://bugzilla.suse.com/show_bug.cgi?id=1190975 https://security.netapp.com/advisory/ntap-20211014-0004/ Debian Security Information: DSA-5586 (Google Search) https://www.debian.org/security/2023/dsa-5586 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/ https://www.starwindsoftware.com/security/sw-20220805-0001/ https://www.tenable.com/plugins/nessus/154174 https://www.openssh.com/security.html https://www.openssh.com/txt/release-8.8 https://www.openwall.com/lists/oss-security/2021/09/26/1 https://www.oracle.com/security-alerts/cpuapr2022.html https://www.oracle.com/security-alerts/cpujul2022.html https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html Common Vulnerability Exposure (CVE) ID: CVE-2023-51384 http://seclists.org/fulldisclosure/2024/Mar/21 https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b https://www.openssh.com/txt/release-9.6 https://www.openwall.com/lists/oss-security/2023/12/18/2 Common Vulnerability Exposure (CVE) ID: CVE-2023-51385 https://security.gentoo.org/glsa/202312-17 https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html http://www.openwall.com/lists/oss-security/2023/12/26/4
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.