[FREEBSD:0F7598CC-9FE2-11EE-B47F-901B0E9408DC] nebula -- security fix for terrapin vulnerability

Severity Medium

Affected Packages 1

CVEs 1

Upstream reports:

  Security fix:

    Update golang.org/x/crypto, which includes a fix for CVE-2023-48795.

Package	Affected Version
pkg:freebsd/nebula	< 1.8.1

ID

FREEBSD:0F7598CC-9FE2-11EE-B47F-901B0E9408DC

Severity

medium

Severity from

CVE-2023-48795

URL

Published

2023-10-16T00:00:00
(11 months ago)

Modified

2023-12-19T00:00:00
(9 months ago)

Rights

FreeBSD VuXML Security Team

Other Advisories

Source	# ID	Name	URL
FreeBSD VuXML			https://www.openssh.com/txt/release-9.6
FreeBSD VuXML			https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d
FreeBSD VuXML			https://terrapin-attack.com/

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:freebsd/nebula		nebula	< 1.8.1

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date