diff options
| author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-05-07 05:37:55 +0000 |
|---|---|---|
| committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-05-07 05:37:55 +0000 |
| commit | 085377d0cee4cd384fd4bbb67ec162bf8e4367cb (patch) | |
| tree | 371f72295843f8b4cfb6740441673e202bb29b2a /debian/changelog | |
| parent | Releasing progress-linux version 1:7.9p1-10+deb10u2progress5u1. (diff) | |
| download | openssh-085377d0cee4cd384fd4bbb67ec162bf8e4367cb.tar.xz openssh-085377d0cee4cd384fd4bbb67ec162bf8e4367cb.zip | |
Merging debian version 1:7.9p1-10+deb10u3.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/changelog')
| -rw-r--r-- | debian/changelog | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 487c0a2..f855717 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,23 @@ +openssh (1:7.9p1-10+deb10u3) buster-security; urgency=high + + * Non-maintainer upload. + + [ Salvatore Bonaccorso ] + * ssh(1): Fix bad interaction between the ssh_config ConnectTimeout + and ConnectionAttempts directives - connection attempts after the + first were ignoring the requested timeout (LP: #1798049). + + [ Utkarsh Gupta ] + * remote code execution relating to PKCS#11 providers + - debian/patches/CVE-2023-38408-1.patch: terminate process if requested + to load a PKCS#11 provider that isn't a PKCS#11 provider in + ssh-pkcs11.c. + - debian/patches/CVE-2023-38408-3.patch: ensure FIDO/PKCS11 libraries + contain expected symbols in misc.c, misc.h, ssh-pkcs11.c, ssh-sk.c. + - CVE-2023-38408 + + -- Utkarsh Gupta <utkarsh@debian.org> Wed, 29 Mar 2023 11:02:23 +0200 + openssh (1:7.9p1-10+deb10u2progress5u1) engywuck; urgency=medium * Initial reupload to engywuck. |