Forum: RetroDigital BBS

sslh exploit CVE-2022-4639

From BIG Umberto@3:770/3 to All on Tue Aug 22 20:35:43 2023

CVE-2022-4639

Description:
https://vuldb.com/?id.216497
https://nvd.nist.gov/vuln/detail/CVE-2022-4639

Patch:
https://github.com/yrutschle/sslh https://github.com/yrutschle/sslh/commit/b19f8a6046b080e4c2e28354a58556bb26040c6f

Anyone know how patch version of sslh present into the Raspbian 10.13 (buster) on a PI3 ?

Thank.

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

From Richard Kettlewell@3:770/3 to BIG Umberto on Wed Aug 23 09:07:33 2023

"BIG Umberto" <user@2130706432.invalid> writes:

CVE-2022-4639

Description:
https://vuldb.com/?id.216497
https://nvd.nist.gov/vuln/detail/CVE-2022-4639

Patch:
https://github.com/yrutschle/sslh https://github.com/yrutschle/sslh/commit/b19f8a6046b080e4c2e28354a58556bb26040c6f

Anyone know how patch version of sslh present into the Raspbian 10.13 (buster) on a PI3 ?

https://lists.rutschle.net/mailman/archives/sslh/2022-December/000753.html suggests only v.20-rc1 is impacted.

--
https://www.greenend.org.uk/rjk/

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

From BIG Umberto@3:770/3 to Richard Kettlewell on Wed Aug 23 10:49:15 2023

In date: Wed, 23 Aug 2023 10:07:33 on group: comp.sys.raspberry-pi,
Richard Kettlewell wrote:

"BIG Umberto" <user@2130706432.invalid> writes:

CVE-2022-4639

https://lists.rutschle.net/mailman/archives/sslh/2022-December/000753.html suggests only v.20-rc1 is impacted.

Ok. Thank!

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

From Brian Gregory@3:770/3 to BIG Umberto on Thu Aug 24 23:16:40 2023

On 22/08/2023 21:35, BIG Umberto wrote:

CVE-2022-4639

Description:
https://vuldb.com/?id.216497
https://nvd.nist.gov/vuln/detail/CVE-2022-4639

Patch:
https://github.com/yrutschle/sslh https://github.com/yrutschle/sslh/commit/b19f8a6046b080e4c2e28354a58556bb26040c6f

Anyone know how patch version of sslh present into the Raspbian 10.13 (buster) on a PI3 ?

You'd have to build it from the patched source code.

--
Brian Gregory (in England).

--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

Who's Online

System Info

Sysop:	deepend
Location:	Calgary, Alberta
Users:	281
Nodes:	10 (0 / 10)
Uptime:	30:02:10
Calls:	2,402
Files:	5,167
D/L today:	213 files (70,991K bytes)
Messages:	437,837

Synchronet Oneliners
- Vintagegeek@rdbbs
  Thu Oct 2 09:15:49 2025
  Next
- Vintagegeek@rdbbs
  Fri Oct 3 10:18:45 2025
  Gotta gotra gotta - make a hole
- Dev00903@rdbbs
  Mon Oct 6 04:48:23 2025
  hello guys
- Dev00903@rdbbs
  Mon Oct 6 04:48:48 2025
  how it works this?
- Vintagegeek@rdbbs
  Fri Oct 10 11:47:51 2025
  Is it 1984 ?
- Witness@rdbbs
  Sun Oct 26 00:03:42 2025
  Is this the BBS yet?