SUSE-SU-2019:13931-1 -- SLES opensshID: oval:org.secpod.oval:def:89003332 | Date: (C)2021-02-27 (M)2023-03-29 |
Class: PATCH | Family: unix |
This update for openssh fixes the following issues: Security issue fixed: - CVE-2018-20685: Fixed an issue where scp client allows remote SSH servers to bypass intended access restrictions - CVE-2019-6109: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate terminal output via the object name, e.g. by inserting ANSI escape sequences - CVE-2019-6110: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate stderr output, e.g. by inserting ANSI escape sequences - CVE-2019-6111: Fixed an issue where the scp client would allow malicious remote SSH servers to execute directory traversal attacks and overwrite files
Platform: |
SUSE Linux Enterprise Server 11 SP4 |