https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=271839
Bug ID: 271839
Summary: crypto/openssh: Status of CVE-2023-28531
Product: Base System
Version: 12.4-RELEASE
Hardware: Any
OS: Any
Status: New
Severity: Affects Many People
Priority: ---
Component: bin
Assignee: [email protected]
Reporter: [email protected]
Since 03/17/2023 a critical vulnerability in openssh 8.9 up to 9.2 has been
reported:
https://www.openwall.com/lists/oss-security/2023/03/15/8
OpenSSH versions prior to 9.3 are susceptible to a vulnerability which when
successfully exploited could lead to disclosure of sensitive information,
addition or modification of data, or Denial of Service (DoS).
How is the status of this security-flaw?
According to https://nvd.nist.gov/vuln/detail/CVE-2023-28531 it has been rated
as 9.8/critical
--
You are receiving this mail because:
You are the assignee for the bug.
