In ssh-agent in OpenSSH before 9.6, certain destination...
Moderate severity
Unreviewed
Published
Dec 18, 2023
to the GitHub Advisory Database
•
Updated Mar 13, 2024
Description
Published by the National Vulnerability Database
Dec 18, 2023
Published to the GitHub Advisory Database
Dec 18, 2023
Last updated
Mar 13, 2024
In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.
References