Описание
Security update for python-paramiko
This update for python-paramiko fixes the following issues:
Updated to version 2.4.3:
- CVE-2018-1000805: Fixed authentication bypass (bsc#1111151).
Bugfixes:
- Fixed Ed25519 key handling for certain key comment lengths (bsc#1200603).
Список пакетов
Image SLES15-SP1-SAPCAL-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP1-SAPCAL-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-HPC-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-HPC-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-SAP-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-SAP-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-SAP-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-HPC-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-SAP-BYOS-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-SAPCAL-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP3-SAPCAL-EC2-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-Azure-Basic
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-Azure-Standard
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-EC2
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-EC2-ECS-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-HPC
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-HPC-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP4-SAP-Hardened-EC2
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP5-EC2-ECS-HVM
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP5-HPC-EC2
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP5-SAP-Azure
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP5-SAP-EC2
python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP5-SAP-Hardened-EC2
python3-paramiko-2.4.3-150100.6.15.1
SUSE Enterprise Storage 6
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Enterprise Storage 7
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Module for Python 2 15 SP3
python2-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Server 15 SP1-BCL
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Server 15 SP1-LTSS
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Server 15 SP2-BCL
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Server 15 SP2-LTSS
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Manager Proxy 4.1
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Manager Retail Branch Server 4.1
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
SUSE Manager Server 4.1
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
openSUSE Leap 15.3
python-paramiko-doc-2.4.3-150100.6.15.1
python2-paramiko-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
openSUSE Leap 15.4
python-paramiko-doc-2.4.3-150100.6.15.1
python3-paramiko-2.4.3-150100.6.15.1
Ссылки
- Link for SUSE-SU-2022:3730-1
- E-Mail link for SUSE-SU-2022:3730-1
- SUSE Security Ratings
- SUSE Bug 1111151
- SUSE Bug 1200603
- SUSE CVE CVE-2018-1000805 page
Описание
Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via network connectivity.
Затронутые продукты
Image SLES15-SP1-SAPCAL-Azure:python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP1-SAPCAL-EC2-HVM:python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-BYOS-Azure:python3-paramiko-2.4.3-150100.6.15.1
Image SLES15-SP2-BYOS-EC2-HVM:python3-paramiko-2.4.3-150100.6.15.1
Ссылки
- CVE-2018-1000805
- SUSE Bug 1111151