Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-48795

Опубликовано: 18 дек. 2023
Источник: ubuntu
Приоритет: medium
CVSS3: 5.9

Описание

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before...

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

needs-triage

esm-apps/bionic

released

2017.75-3ubuntu0.1~esm1
esm-apps/focal

released

2019.78-2ubuntu0.1~esm1
esm-apps/jammy

released

2020.81-5ubuntu0.1
esm-apps/noble

needs-triage

esm-apps/xenial

needs-triage

focal

ignored

end of standard support, was needed
jammy

released

2020.81-5ubuntu0.1
lunar

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

3.66.4-1
esm-apps/bionic

not-affected

code not present
esm-apps/focal

released

3.46.3-1ubuntu0.1
esm-apps/jammy

released

3.58.0-1ubuntu0.1
esm-apps/noble

released

3.66.4-1
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

focal

released

3.46.3-1ubuntu0.1
jammy

released

3.58.0-1ubuntu0.1

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

needs-triage

esm-apps/bionic

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-infra/xenial

needs-triage

focal

ignored

end of standard support, was needs-triage
jammy

needs-triage

lunar

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

0.10.6-2
esm-infra/bionic

not-affected

code not present
esm-infra/focal

not-affected

0.9.3-2ubuntu2.4
esm-infra/xenial

not-affected

code not present
focal

released

0.9.3-2ubuntu2.4
jammy

released

0.9.6-2ubuntu0.22.04.2
lunar

released

0.10.4-2ubuntu0.2
mantic

released

0.10.5-3ubuntu1.1
noble

not-affected

0.10.6-2

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

1.11.0-4
esm-apps/bionic

not-affected

esm-apps/focal

not-affected

1.8.0-2.1ubuntu0.1
esm-apps/jammy

not-affected

1.10.0-3
esm-apps/xenial

not-affected

esm-infra-legacy/trusty

not-affected

focal

not-affected

1.8.0-2.1ubuntu0.1
jammy

not-affected

1.10.0-3
lunar

not-affected

1.10.0-3

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

DNE

esm-apps/focal

not-affected

code-not-present
esm-infra/bionic

released

3.0.3-0ubuntu1~18.04.2+esm1
esm-infra/xenial

released

2.0.11-0ubuntu1~16.04.4+esm1
focal

not-affected

code-not-present
jammy

DNE

lunar

DNE

mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

1:9.6p1-3ubuntu1
esm-infra-legacy/trusty

needs-triage

esm-infra/bionic

released

1:7.6p1-4ubuntu0.7+esm3
esm-infra/focal

not-affected

1:8.2p1-4ubuntu0.10
esm-infra/xenial

released

1:7.2p2-4ubuntu2.10+esm5
fips-preview/jammy

released

1:8.9p1-3ubuntu0.5
fips-updates/bionic

released

1:7.9p1-10~ubuntu18.04.fips.0.9
fips-updates/focal

released

1:8.2p1-4ubuntu0.fips.0.10
fips-updates/jammy

released

1:8.9p1-3ubuntu0.5

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

ignored

esm-apps/bionic

ignored

esm-apps/focal

ignored

esm-apps/jammy

ignored

esm-apps/noble

ignored

focal

ignored

jammy

ignored

lunar

ignored

end of life, was needs-triage
mantic

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

2.12.0-2ubuntu4
esm-infra-legacy/trusty

needs-triage

esm-infra/bionic

needs-triage

esm-infra/focal

not-affected

2.6.0-2ubuntu0.3
esm-infra/xenial

needs-triage

focal

released

2.6.0-2ubuntu0.3
jammy

released

2.9.3-0ubuntu1.2
lunar

ignored

end of life
mantic

released

2.12.0-2ubuntu1.23.10.2

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

needs-triage

esm-apps/bionic

needs-triage

esm-apps/focal

released

1.3.6c-2ubuntu0.1
esm-apps/jammy

not-affected

1.3.7c+dfsg-1build1
esm-apps/noble

not-affected

1.3.8.b+dfsg-1build3
esm-apps/xenial

needs-triage

focal

released

1.3.6c-2ubuntu0.1
jammy

not-affected

1.3.7c+dfsg-1build1
lunar

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

0.81-1
esm-apps/bionic

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-apps/xenial

needs-triage

focal

ignored

end of standard support, was needs-triage
jammy

needs-triage

lunar

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

released

2.10.1-2ubuntu1
esm-apps/bionic

ignored

changes too intrusive
esm-apps/focal

released

1.12.2-1ubuntu0.1
esm-apps/jammy

released

2.5.0-1ubuntu0.1~esm1
esm-apps/noble

released

2.10.1-2ubuntu0.1
esm-apps/xenial

ignored

changes too intrusive
focal

released

1.12.2-1ubuntu0.1
jammy

needed

lunar

ignored

end of life, was needs-triage

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

code not present
esm-infra/bionic

not-affected

code not present
esm-infra/focal

not-affected

code not present
esm-infra/xenial

not-affected

code not present
focal

not-affected

code not present
jammy

not-affected

code not present
lunar

ignored

end of life, was needs-triage
mantic

ignored

end of life, was needs-triage
noble

not-affected

code not present

Показывать по

Ссылки на источники

5.9 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2023-48795

CVSS3: 5.9
nvd
больше 1 года назад

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.

msrc логотип

CVE-2023-48795

CVSS3: 5.9
msrc
10 месяцев назад

Описание отсутствует

debian логотип

CVE-2023-48795

CVSS3: 5.9
debian
больше 1 года назад

The SSH transport protocol with certain OpenSSH extensions, found in O ...

suse-cvrf логотип

openSUSE-SU-2024:0135-1

suse-cvrf
около 1 года назад

Security update for gitui

suse-cvrf логотип

openSUSE-SU-2024:0036-1

suse-cvrf
больше 1 года назад

Security update for tinyssh

5.9 Medium

CVSS3

Уязвимость CVE-2023-48795