- Package:
- src:erlang
- Source:
- src:erlang
- Submitter:
- Salvatore Bonaccorso
- Date:
- 2025-04-21 11:21:03 UTC
- Severity:
- normal
- Tags:
Hi, The following vulnerability was published for erlang. CVE-2023-48795[0]: | The SSH transport protocol with certain OpenSSH extensions, found in | OpenSSH before 9.6 and other products, allows remote attackers to | bypass integrity checks such that some packets are omitted (from the | extension negotiation message), and a client and server may | consequently end up with a connection for which some security | features have been downgraded or disabled, aka a Terrapin attack. | This occurs because the SSH Binary Packet Protocol (BPP), | implemented by these extensions, mishandles the handshake phase and | mishandles use of sequence numbers. For example, there is an | effective attack against SSH's use of ChaCha20-Poly1305 (and CBC | with Encrypt-then-MAC). The bypass occurs in | chacha20-poly1305@openssh.com and (if CBC is used) the | -etm@openssh.com MAC algorithms. This also affects Maverick Synergy | Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh | before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before | 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, and | libssh2 through 1.11.0; and there could be effects on Bitvise SSH | through 9.31. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2023-48795 https://www.cve.org/CVERecord?id=CVE-2023-48795 [1] https://github.com/erlang/otp/commit/ee67d46285394db95133709cef74b0c462d665aa Please adjust the affected versions in the BTS as needed. Regards, Salvatore
Hi Salvatore, Reading the latest announcement on the Erlang mailing list I've found that there is an update of ssh in Erlang 25 which addresses CVE-2023-48795: https://erlang.org/pipermail/erlang-announce/2023-December/000260.html I will try to backport these changes to Erlang currently in stable if it's necessary. As for the unstable, the newest version will fix this as well. Cheers!
Hi Sergei, Thanks for working on it. I would say, let's start top-down so go first trough unstable upload, then we can assess the state for it for the security supported suites (and if it needs a DSA or can go trough a point release). There might be e.g. mitigating factor if ChaCha20-Poly1305 and Encrypt-then-MAC support is missing. Regards, Salvatore
We believe that the bug you reported is fixed in the latest version of
erlang, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1059002@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sergei Golovan <sgolovan@debian.org> (supplier of updated erlang package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
Format: 1.8
Date: Tue, 19 Dec 2023 18:19:42 +0300
Source: erlang
Architecture: source
Version: 1:25.3.2.8+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Erlang Packagers <pkg-erlang-devel@lists.alioth.debian.org>
Changed-By: Sergei Golovan <sgolovan@debian.org>
Closes: 1059002
Changes:
erlang (1:25.3.2.8+dfsg-1) unstable; urgency=medium
.
* New upstream release, which fixes CVE-2023-48795 - downgrading security
features in SSH connections (closes: #1059002).
* Refresh patches.
* Bump standards version to 4.6.2.
Checksums-Sha1:
4e321bada5833d97799e96b94bfdfdd597e99de8 5023 erlang_25.3.2.8+dfsg-1.dsc
9b026df8b486c926eabe7f2e4496b7bb06775265 47339028 erlang_25.3.2.8+dfsg.orig.tar.xz
a3052a95569f2e44713f676d29bc53b8a9099d47 59856 erlang_25.3.2.8+dfsg-1.debian.tar.xz
ee1f14505d6f9609b054d2f86dee1094acfd2530 30593 erlang_25.3.2.8+dfsg-1_amd64.buildinfo
Checksums-Sha256:
8b0d24f5f040cfbf7c45609a11251d0a74a5ff1b45e3940a1bf4ca7318fbd566 5023 erlang_25.3.2.8+dfsg-1.dsc
8a403c0dcbace0ba913fb635b66c3dafb09deea5fd24c08778ba34c6231ba8f7 47339028 erlang_25.3.2.8+dfsg.orig.tar.xz
f17fbef800970be8b7b0cc5a26bcd0da71b680b1fa82be849a1dc6f15ab64c18 59856 erlang_25.3.2.8+dfsg-1.debian.tar.xz
475b9272f9147591e0cf4808cff50678bdab3be87310f435d7d2e0195f057bd3 30593 erlang_25.3.2.8+dfsg-1_amd64.buildinfo
Files:
2a70e0e15e64a31d15b2a66dad4a0d72 5023 interpreters optional erlang_25.3.2.8+dfsg-1.dsc
acd342f5a012752aa97181054ea23deb 47339028 interpreters optional erlang_25.3.2.8+dfsg.orig.tar.xz
678e9e5105bc39d4b014033a79c6532b 59856 interpreters optional erlang_25.3.2.8+dfsg-1.debian.tar.xz
c1621b537fb8d0a2c11b66a63fb1dfc2 30593 interpreters optional erlang_25.3.2.8+dfsg-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEE/SYPsyDB+ShSnvc4Tyrk60tj54cFAmWBurAACgkQTyrk60tj
54c14xAAn8Qy2k2O4GEYduAAFLFU6CnHYklZf61rm7L6IVdm8gi7tr3SGzxHPA9g
saNpcvk8EN/diq5F1KRFa/F/j2Jr0/cJAwuz/GJ36Rd6Wwq74DH0GDydesYR4FbB
Zt6tMLZaDzVMRCZzuwJ+Qy7JgSXp1Uz4f197wXKIHrTOB54Li7me54mgvfkQzwlP
gy6VSqTfre203vQZ3meEd22+U+eTeXoaajQr6l1eL8OUJfx3r9fhoQ+3KFwufPNE
T2QrR7JNEcbDI4enqfgp2Bj2ojc7uXORYQ0lRyly7HFdl9veEepbp3XIRQfU9j81
OSqOaMirv0AUlYz6jx6t9VSRZhwHp7DQSRaFMS3dTI2lOEPXDWS8qOIMfC0VZ7+N
d50MstmvytwRGI/CRS/ij13AGsIxZY6wEMNWwNWW+m9egaTVHirCPxH/0B/Eh0s6
IJUWUAAsmcPbj4EUofnzzme8++wIWBQIboNED3GIoJUrlAKKVsYrC7b8bvf3wPAe
rak35rJ5C/ovyqA8DcSvWY+kA8v0L4mbw8rH71eOx7OiqdDf8U+od2Xsh5AoV3u0
0v/rRLpMYOmZsPa/NnQvMIjAi3Zv5D5mD65ocms85Id8Cf9bPdGDy+DANjm9gHye
SSHYjEHj6XUu/9YPGjTeIscwvqsW16jB/s32Eu2eFqDJ0Kqn5Nw=
=aJsJ
-----END PGP SIGNATURE-----
We believe that the bug you reported is fixed in the latest version of
erlang, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1059002@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sergei Golovan <sgolovan@debian.org> (supplier of updated erlang package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
Format: 1.8
Date: Sun, 20 Apr 2025 08:09:59 +0300
Source: erlang
Architecture: source
Version: 1:25.2.3+dfsg-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Erlang Packagers <pkg-erlang-devel@lists.alioth.debian.org>
Changed-By: Sergei Golovan <sgolovan@debian.org>
Closes: 1059002 1101713 1103442
Changes:
erlang (1:25.2.3+dfsg-1+deb12u1) bookworm-security; urgency=high
.
[ Salvatore Bonaccorso ]
* ssh: implement strict KEX (CVE-2023-48795) (Closes: #1059002)
* ssh: reject SFTP packets exceeding max allowed size (CVE-2025-26618)
* ssh: fix denial of service due to erroneous processing of large KEX
init packages (CVE-2025-30211) (Closes: #1101713):
- reduce log processing for plain connections
- ignore too long algorithm names
- limit the length of error messages in reply to invalid packets
- add the custom_kexinit test to test large KEX init packages processing
* ssh: fix remote code execution (RCE) by an unauthenticated user
(CVE-2025-32433) (Closes: #1103442)
.
[ Sergei Golovan ]
* Cleanup the patches.
Checksums-Sha1:
90a5a31d9744583449ae4238ac9b7543e4b7ad6e 5041 erlang_25.2.3+dfsg-1+deb12u1.dsc
17f9b115cb539f2f3688a207388a3eae67d8481b 48013400 erlang_25.2.3+dfsg.orig.tar.xz
c66ea3d3dd04806550563cd71c0fc09023b69179 72708 erlang_25.2.3+dfsg-1+deb12u1.debian.tar.xz
a50a25697b3faefd9c49975907c80afec7b686f9 31737 erlang_25.2.3+dfsg-1+deb12u1_amd64.buildinfo
Checksums-Sha256:
ad8562aaaee6d692d604132832fbb51feeeb6e176f0445ca201486318361b0b8 5041 erlang_25.2.3+dfsg-1+deb12u1.dsc
65c77675af31235d19ee7888fb2a9d858759b1089ba33126344697be7600d271 48013400 erlang_25.2.3+dfsg.orig.tar.xz
02643fa322797fca559b1bc6aa938ea44810fc372a5fc504759d15f6ddbd51fa 72708 erlang_25.2.3+dfsg-1+deb12u1.debian.tar.xz
116de48e1bff1d3cb4bf76009d4d2a9f4b9634bf75abf14fdb557a621c2a0e9b 31737 erlang_25.2.3+dfsg-1+deb12u1_amd64.buildinfo
Files:
173a1cf30758b022aadc9c1552e8cc53 5041 interpreters optional erlang_25.2.3+dfsg-1+deb12u1.dsc
68f00d5a9b77d45d45be87ab98fa1d15 48013400 interpreters optional erlang_25.2.3+dfsg.orig.tar.xz
29e39401ffd156185a53107b881e91cd 72708 interpreters optional erlang_25.2.3+dfsg-1+deb12u1.debian.tar.xz
7c4670053fe6f82c46d132f06156be73 31737 interpreters optional erlang_25.2.3+dfsg-1+deb12u1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEE/SYPsyDB+ShSnvc4Tyrk60tj54cFAmgEg7QACgkQTyrk60tj
54fCnA/+KajLxwWNXrFFEEWPsHKi0oDBqP0lu4sJk7tUKcZxPslBS4SqtTDC8lFa
Vu3igyWoZKYjhpvW4LVmIk3z7dDa0YhY9PNHck1xl4AEwY8dCvOMBDsNd4UOTh9r
eDfbb8GJRsxs34umzpkXFyNoRWvtCRFAhrVZUxCy9K1qas5FtSSXNrsR5VH+IDne
Ni5hia5Hum5bPdpttZ2MC+IXFrJhzpsP4IMqAB1WY1kaRHNV+ASpAG9tkk9tWzoD
dJiQ3BBYlxkCL3CaAaTXry0y3RTFMzy/2LGKS2DL/mjCX+EEwKZe86dl5Pw+BE2Z
TZNVAg3Tpf5rVwUBwIHTxxO/qrKF7b2hjpWUBjMc/V2dlYjfcktq1gWBt7CxwaA+
ulNJDVchShZTKiS7PoClYX5wkA6/0gPIJmMLs85DV8qvIyYxM4kI96r3bXSQVfsD
4EBW10dhWyZAYPYXq11rklLZ+QfEk4EHOXG0pkLR75VPYbhNYbWKIoe9Yhm6UmOW
P4J7kMng4bGOF2Su8/wQ4ZTKS2s++eaJIIyenfJxeJ4yoAldcouVU9eI8NR6P17a
JABen8gXr4CxEaeGLjHBoROr8KVlIeEB1zSMO0jlW+eVteTUN9DjZlciVLtSux01
3AOoTZPDOhyyjsyTMhVveQsTiVgLrBJD3K4gCglimlfcOlzIYhY=
=9QKO
-----END PGP SIGNATURE-----