• Home

    Email

    Github

    Donate

  • jamesbrine.com.au

CVE-2023-28531 Information

Mar 18, 2023 cve

Description

ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints.

Reference

https://www.openwall.com/lists/oss-security/2023/03/15/8

  • 𝖏𝖆𝖒𝖊𝖘𝖇𝖗𝖎𝖓𝖊.𝖈𝖔𝖒.𝖆𝖚