2359838 – (CVE-2023-5616) CVE-2023-5616 gnome-control-center: Remote login misconfiguration in GNOME Control Center

Bug 2359838 (CVE-2023-5616) - CVE-2023-5616 gnome-control-center: Remote login misconfiguration in GNOME Control Center

Summary: CVE-2023-5616 gnome-control-center: Remote login misconfiguration in GNOME Co...

Keywords:
Status:	NEW
Alias:	CVE-2023-5616
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2362698 2362699 2362700
Blocks:
TreeView+	depends on / blocked

Reported:	2025-04-15 19:01 UTC by OSIDB Bzimport
Modified:	2025-04-29 12:30 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-04-15 19:01:16 UTC

In Ubuntu, gnome-control-center did not properly reflect SSH remote login status when the system was configured to use systemd socket activation for openssh-server. This could unknowingly leave the local machine exposed to remote SSH access contrary to expectation of the user.

Note You need to log in before you can comment on or make changes to this bug.