Security Centmin Mod Security Updates OpenSSH (Terrapin Attack) & glibc iconv CVE-2024-2961

eva2000 · 2024-04-26

Centmin Mod 124.00stable and 130.00beta01 have been updated to handle 2 security vulnerabilities outlined below. Please see their respective dedicated threads for details. OpenSSH Terrapin Attack CVE-2023-48795...

Discussion in 'Centmin Mod News' started by eva2000, Apr 26, 2024.

Tags:

Thread Status:: Not open for further replies.

Previous Thread Next Thread

Apr 26, 2024 #1
eva2000 Administrator Staff Member

54,906

12,240

113

May 24, 2014

Brisbane, Australia

Ratings:

+18,811

Local Time:

1:49 PM

Nginx 1.27.x

MariaDB 10.x/11.4+
Centmin Mod 124.00stable and 130.00beta01 have been updated to handle 2 security vulnerabilities outlined below. Please see their respective dedicated threads for details.

OpenSSH Terrapin Attack CVE-2023-48795 https://community.centminmod.com/th...-mitigation-for-centos-7-openssh-7-4p1.25045/. Classed as medium security and harder to exploit due to man in the middle requirements. Not fixed in CentOS 7's OpenSSH 7.4p1 hence needing Centmin Mod updates for mitigation. While fixed in AlmaLinux/Rocky Linux 8/9's OpenSSH versions.

glibc <2.39's iconv module CVE-2024-2961 https://community.centminmod.com/th...2024-2961-vulnerability-mitigation-fix.25069/. Classed as high or critical severity. Needs immediate Centmin Mod update applied mitigations.

Previous Thread Next Thread

Thread Status:: Not open for further replies.

Log in / Register

Forums

Join the community today

Security Centmin Mod Security Updates OpenSSH (Terrapin Attack) & glibc iconv CVE-2024-2961

eva2000 Administrator Staff Member

.

Log in / Register

Useful Searches

Join the community today

Security Centmin Mod Security Updates OpenSSH (Terrapin Attack) & glibc iconv CVE-2024-2961

eva2000 Administrator Staff Member

.