Execuse me,
I'm currently maintaining an ubuntu 18 operating system which is isolated from internet and has difficulty on package update or dirstribution upgrade.
There's OpenSSH installed and running on this ubuntu and is detected by scanning tool that the CVE-2023-48795 is affecting it.
According to ubuntu official statement https://ubuntu.com/security/CVE-2023-48795 ,this vulnerability can be fixed with patch "7.6p1-4ubuntu0.7+esm3" apparently. (Or upgrade to a newer distribution)
However, due to restrictions in the environment, I have to find other methods to solve CVE-2023-48795 rather than package patching.
Does anyone know how to fix CVE-2023-48795 on OpenSSH please?
Any configurations to change?
