First published: Wed Oct 17 2018(Updated: )
USN-3796-1 fixed a vulnerability in paramiko. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/python-paramiko | <1.7.7.1-2ubuntu1.2 | 1.7.7.1-2ubuntu1.2 |
=12.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Paramiko vulnerability is USN-3796-2.
The severity of the Paramiko vulnerability is not specified in the provided information.
To fix the Paramiko vulnerability on Ubuntu 12.04, you should update the python-paramiko package to version 1.7.7.1-2ubuntu1.2 or later.