[Bug 3594] PKCS11Provider now requires full paths
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Jul 28 10:06:58 AEST 2023
https://bugzilla.mindrot.org/show_bug.cgi?id=3594
--- Comment #2 from Damien Miller <djm at mindrot.org> ---
I should add that the change that causes this has not been released
yet. It will be part of OpenSSH 9.4 which is due pretty soon. I guess
somebody has mistakenly cherry-picked it somewhere? It is not required
to fix CVE-2023-38408 (only 892506b1365430 - the fatal() change is
needed); it's more defence in depth.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list