[talk] unpatched SSHD vulnerabilities in FreeBSD?

Eitan Adler lists at eitanadler.com
Thu Dec 28 21:20:54 EST 2017


+secteam

On 28 December 2017 at 12:11, Pete Wright <pete at nomadlogic.org> wrote:
>
>
> On 12/28/2017 07:59, George Rosamond wrote:
>>
>> I noticed this in from a recent Trustwave audit, but it seems that
>> CVE-2017-15906 has gone unpatched in FreeBSD, and maybe CVE-2016-10012.
>> Am I missing something?
>>
>> They don't show up on the advisories page.
>
>
> yea it looks like neither of these fixes have been applied to 11-RELEASE,
> and CVE-2017-15906 would seem to be vulnerable on 12-CURRENT from what i can
> tell.  Maybe submit a PR if you have time?




-- 
Eitan Adler




More information about the talk mailing list