[talk] unpatched SSHD vulnerabilities in FreeBSD?

Pete Wright pete at nomadlogic.org
Thu Dec 28 15:11:29 EST 2017



On 12/28/2017 07:59, George Rosamond wrote:
> I noticed this in from a recent Trustwave audit, but it seems that
> CVE-2017-15906 has gone unpatched in FreeBSD, and maybe CVE-2016-10012.
> Am I missing something?
>
> They don't show up on the advisories page.

yea it looks like neither of these fixes have been applied to 
11-RELEASE, and CVE-2017-15906 would seem to be vulnerable on 12-CURRENT 
from what i can tell.  Maybe submit a PR if you have time?

-p

-- 
Pete Wright
pete at nomadlogic.org
@nomadlogicLA



More information about the talk mailing list