10
submitted 1 year ago* (last edited 1 year ago) by tedu@az1.azorius.net to c/cybersecurity@infosec.pub

Fix CVE-2023-38408 - a condition where specific libaries loaded via ssh-agent(1)'s PKCS#11 support could be abused to achieve remote code execution via a forwarded agent socket if the following conditions are met:

  • Exploitation requires the presence of specific libraries on the victim system.
  • Remote exploitation requires that the agent was forwarded to an attacker-controlled system.

In addition to removing the main precondition for exploitation, this release removes the ability for remote ssh-agent(1) clients to load PKCS#11 modules by default (see below).

[-] tedu@az1.azorius.net 0 points 1 year ago

If I just want the larger screen, can I insert the motherboard from an existing model 13?

tedu

joined 1 year ago