From 4c837f1deadf3a3a7f7781da29fded1c4f4d9093 Mon Sep 17 00:00:00 2001
From: Mathieu Simon <mathieu.simon@simweb.ch>
Date: Thu, 21 Dec 2023 14:18:30 +0100
Subject: [PATCH] Add newly-validated version and mention disabling
 chacha20-poly1305@openssh.com

---
 Synology-DSM.md | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/Synology-DSM.md b/Synology-DSM.md
index e6669d9..d34bddc 100644
--- a/Synology-DSM.md
+++ b/Synology-DSM.md
@@ -27,6 +27,8 @@ aes256-gcm@openssh.com
 chacha20-poly1305@openssh.com
 ```
 
+In order to work around [CVE-2023-48795](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48795) you can also disable `chacha20-poly1305@openssh.com`.
+
 ### KEX
 
 Leave the following key exchange algorithms (KEX) enabled and disable the remaining ones:
@@ -63,7 +65,8 @@ At least DSM version 7.2 doesn't allow you reaching a perfect score, since neith
 
 ## Validated versions
 
-| DSM                    | ssh-audit  |
-| ---------------------- | ------------- |
-| DSM 7.2.1-69057        | [master @ 02ab487232de438c0811116f2676cb1c9b5f3d62 ](https://github.com/jtesta/ssh-audit/commit/02ab487232de438c0811116f2676cb1c9b5f3d62) |
-| DSM 7.2-64570 Update 3 | |
\ No newline at end of file
+| DSM                      | ssh-audit  |
+| -----------------------  | ------------- |
+| DSM 7.2.1-69057 Update 3 | [master @ c8e075ad13516b59ab30461d2590c3403e3379e8 ](https://github.com/jtesta/ssh-audit/commit/c8e075ad13516b59ab30461d2590c3403e3379e8) |
+| DSM 7.2.1-69057          | [master @ 02ab487232de438c0811116f2676cb1c9b5f3d62 ](https://github.com/jtesta/ssh-audit/commit/02ab487232de438c0811116f2676cb1c9b5f3d62) |
+| DSM 7.2-64570 Update 3   | |
\ No newline at end of file