Category: VyOS Platform Blog | security
Remote code execution in listening Zabbix agent (CVE-2023-32728)
Hello, Community! Our community member Fabian Riechsteiner brought to our attention that the version of the Zabbix agent present in VyOS 1.4.0 is susceptible to...
CVE-2024-6387 (regreSSHion)
Hello, Community! Today Qualys's security team has disclosed a remotely exploitable vulnerability in OpenSSH server. It was assigned CVE-2024-6387 number and ni...
VyOS 1.3.7 release
Hello, Community! VyOS 1.3.7/Equuleus maintenance release is available now. It fixes the buffer overflow vulnerability recently discovered in GNU libc (CVE-2024...
xz backdoor, netfilter vulnerability, and a rolling release signing key leak
Hello, Community! There were quite a few security incidents lately that caught everyone's attention. Thankfully, none had any real impact on VyOS security, but ...
VyOS 1.3.6 maintenance release
Hello, community! VyOS 1.3.6 LTS release is here — with many bug fixes and security updates. The most important are fixes for denial of service vulnerabilities ...
VyOS Project February 2024 Update
Hello, community! Curious what we've been up to in January? Our main focus is the final stabilization of the 1.4.0/Sagitta branch, and we will soon make the fir...
VyOS 1.3.5 security release
Hello, Сommunity! VyOS 1.3.5/Equuleus LTS release is now officially available for download for customers and contributors. It includes fixes for two security vu...
What's coming for OpenVPN in VyOS 1.4?
Hello, Community! OpenVPN is one of the oldest open-source VPN protocols and implementations. It took the world by storm in the early 2000s because it was a hug...
Zenbleed and OpenSSH agent vulnerabilities and their impact on VyOS
Hello, Community! Recently, two severe vulnerabilities were discovered by security researchers. One of them is nicknamed Zenbleed (CVE-2023-20593) and affects a...
