diff options
| author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-06-26 07:46:57 +0000 |
|---|---|---|
| committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-06-26 07:46:57 +0000 |
| commit | e007ca3d9f75a0df3a7c04d3577d2ac781324ce1 (patch) | |
| tree | 6c2098f34a4a05c1c5dff5d3e3140b1bdb8f15a4 /debian/NEWS | |
| parent | Adding debian version 1:9.7p1-5. (diff) | |
| download | openssh-e007ca3d9f75a0df3a7c04d3577d2ac781324ce1.tar.xz openssh-e007ca3d9f75a0df3a7c04d3577d2ac781324ce1.zip | |
Adding debian version 1:9.7p1-6.debian/1%9.7p1-6
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/NEWS')
| -rw-r--r-- | debian/NEWS | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/debian/NEWS b/debian/NEWS index 4e3b2ee..79738c6 100644 --- a/debian/NEWS +++ b/debian/NEWS @@ -1,3 +1,19 @@ +openssh (1:9.7p1-6) UNRELEASED; urgency=medium + + Debian's PAM configuration for OpenSSH no longer reads the + ~/.pam_environment file. The implementation of this in pam_env has a + history of security problems and has been deprecated by the upstream + Linux-PAM maintainers due to the possibility that "user supplied + environment variables in the PAM environment could affect behavior of + subsequent modules in the stack without the consent of the system + administrator". + + Instead, environment variables need to be set somewhere that will be + handled by the session process; for most users, this will be shell + initialization files such as ~/.bash_profile or ~/.bashrc. + + -- Colin Watson <cjwatson@debian.org> Thu, 23 May 2024 19:17:29 +0100 + openssh (1:9.5p1-1) experimental; urgency=medium OpenSSH 9.5p1 includes a number of changes that may affect existing |