MGASA-2026-0182
- Source
- https://advisories.mageia.org/MGASA-2026-0182.html
- Import Source
- https://advisories.mageia.org/MGASA-2026-0182.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2026-0182
- Upstream
- Published
- 2026-06-09T19:38:11Z
- Modified
- 2026-06-09T19:45:16.840716396Z
- Summary
- Updated ruby-net-ssh packages fix security vulnerabilities
- Details
-
This update fixes CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack) , for ruby-net-ssh.
- References
-
- https://advisories.mageia.org/MGASA-2026-0182.html
- https://bugs.mageia.org/show_bug.cgi?id=32682
- https://github.com/net-ssh/net-ssh/blob/v7.3.0/CHANGES.txt
- https://github.com/net-ssh/net-ssh/compare/v7.0.1...v7.3.0
- https://www.openwall.com/lists/oss-security/2023/12/18/3
- https://www.openwall.com/lists/oss-security/2023/12/19/5
- https://www.openwall.com/lists/oss-security/2023/12/20/3
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:9 / ruby-net-ssh
Package
- Name
- ruby-net-ssh
- Purl
- pkg:rpm/mageia/ruby-net-ssh?arch=source&distro=mageia-9