Advisory ROSA-SA-2024-2440

Software: openssh 8.0p1
OS: ROSA Virtualization 2.1

package_evr_string: openssh-8.0p1

CVE-ID: CVE-2019-16905
BDU-ID: None
CVE-Crit: HIGH
CVE-DESC.: OpenSSH, when compiled with an experimental key type, has an integer overflow before authentication if the client or server is configured to use a crafted XMSS key. This causes memory corruption and local code execution due to a bug in the XMSS key analysis algorithm. NOTE. The XMSS implementation is considered experimental in all released versions of OpenSSH, and there is no supported way to enable it when creating a portable OpenSSH.
CVE-STATUS: Not relevant
CVE-REV:

CVE-ID: CVE-2021-36368
BDU-ID: None
CVE-Crit: LOW
CVE-DESC.: If a client is using public key authentication with agent forwarding but without -oLogLevel=verbose, and the attacker has silently modified the server to support the None authentication option, the user cannot determine whether FIDO authentication will confirm that the user wants to connect to this server or that the user wants to allow this server to connect to another server on behalf of the user.
CVE-STATUS: Not Relevant
CVE-REV: