Format: 1.8 Date: Tue, 02 Jan 2024 11:54:04 -0500 Source: openssh Binary: openssh-client openssh-server openssh-sftp-server openssh-tests ssh ssh-askpass-gnome Built-For-Profiles: noudeb Architecture: amd64 amd64_translations all Version: 1:8.9p1-3ubuntu0.6 Distribution: jammy Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: openssh-client - secure shell (SSH) client, for secure access to remote machines openssh-server - secure shell (SSH) server, for secure access from remote machines openssh-sftp-server - secure shell (SSH) sftp server module, for SFTP access from remot openssh-tests - OpenSSH regression tests ssh - secure shell client and server (metapackage) ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad Changes: openssh (1:8.9p1-3ubuntu0.6) jammy-security; urgency=medium . * SECURITY UPDATE: incomplete PKCS#11 destination constraints - debian/patches/CVE-2023-51384.patch: apply destination constraints to all p11 keys in ssh-agent.c. - CVE-2023-51384 * SECURITY UPDATE: command injection via shell metacharacters - debian/patches/CVE-2023-51385.patch: ban user/hostnames with most shell metacharacters in ssh.c. - CVE-2023-51385 Checksums-Sha1: e0332456efb8055300ed9cf9895f666f0f8bf03a 3013392 openssh-client-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 393b9215645682efba718be2e0d340d879f4f4b8 905906 openssh-client_8.9p1-3ubuntu0.6_amd64.deb 40eaea58077514cdbd4a8b84d0f81ecfd999e822 964778 openssh-server-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb e680b0bec5ce32aa890124df080613528467ba8f 435336 openssh-server_8.9p1-3ubuntu0.6_amd64.deb 8aaac54be9377cd876bff7e3385d3d69860a072b 109708 openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 16050678131f21a7ffcd920eb6b781571840b0c4 38716 openssh-sftp-server_8.9p1-3ubuntu0.6_amd64.deb 2a9d3654eb892577df4930e58c34ebc6f6a9f73d 1534750 openssh-tests-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 08610db147383da1f29781fc7ccf1a0f3424a212 1419452 openssh-tests_8.9p1-3ubuntu0.6_amd64.deb 8c713bcb66ee770d4f9464e06266d104bc39524b 19164 openssh_8.9p1-3ubuntu0.6_amd64.buildinfo 1d89a09be5054c07620980db5e3565db42edc7dd 8497 openssh_8.9p1-3ubuntu0.6_amd64_translations.tar.gz f2d237871cb38c5ca7978980d7f5e6b27ca7bf23 17240 ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 8eba863cf8f8ae3994d1a1e6b6334ec7ab02fe6e 17996 ssh-askpass-gnome_8.9p1-3ubuntu0.6_amd64.deb 78b5a9807abda5544bc39ef395024d898cf974a0 4850 ssh_8.9p1-3ubuntu0.6_all.deb Checksums-Sha256: ec6dee25841ea5eb808803b5606b1ce6b3d7e44f5b036ba5c98107656fd66078 3013392 openssh-client-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 87ec04d279027d55a1f8a64a8c80fbe123f0a310db0ffefe68c9b0cf381f1eaa 905906 openssh-client_8.9p1-3ubuntu0.6_amd64.deb 8c16c477890e255d03b28f1d1a601e1be2112ee7e0009719553515920487a1a1 964778 openssh-server-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 00f2fddab31144c32d28155ebf911050425ead47372aab94a5f7d5ed069ca417 435336 openssh-server_8.9p1-3ubuntu0.6_amd64.deb 1faf999dea1d1f89fb44c623e3d94a02080a9bbaae410308f8b176d42ab9403d 109708 openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 0f34868e2fe6a131091f2249a9524f330c29a1c64b6994265d8ebc7f5110dbea 38716 openssh-sftp-server_8.9p1-3ubuntu0.6_amd64.deb 63b573920b630d58a8af09015b5ae705aff00b4e08b219fbdb85335dadb84b1c 1534750 openssh-tests-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 8abb7e7b2db45fbf348fed4ab12f17f7f69797c50d19eb8a2457e5c63c4eca35 1419452 openssh-tests_8.9p1-3ubuntu0.6_amd64.deb 37fa92850c5a6bf55e43a8aa3761959170051ecc995ae657edbfab13cdfd6441 19164 openssh_8.9p1-3ubuntu0.6_amd64.buildinfo 1b725bdfd517567cd9da3ee8eba7be0862abd09e69236ccd7777f9fb22273864 8497 openssh_8.9p1-3ubuntu0.6_amd64_translations.tar.gz 1fba3153d4b9e4d6f507813cda35f4b3c3f04b7e321b9a69e9a28442d4a6ab3d 17240 ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 7583b70c2e5358daaeb067b0c95a61a535b587c0e80fc43e5c8f0ee7aa10a53e 17996 ssh-askpass-gnome_8.9p1-3ubuntu0.6_amd64.deb 9b122d4a394ec014d3161be77ea4e6df4931a7d2d3ce727dc83dd23a725f40bb 4850 ssh_8.9p1-3ubuntu0.6_all.deb Files: fcb6446620cae36b56a16aa21043ab9a 3013392 debug optional openssh-client-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb f2cc5b1c7485f1843ddbb33390eb5334 905906 net standard openssh-client_8.9p1-3ubuntu0.6_amd64.deb b4be2214bc33326f0b159171c4162be4 964778 debug optional openssh-server-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb f02c35073f33ee23b2d662bfb1b22916 435336 net optional openssh-server_8.9p1-3ubuntu0.6_amd64.deb d865e40dd888d9d9532c4b9c70d272f1 109708 debug optional openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 084656a588a340ca4faad3a76c054633 38716 net optional openssh-sftp-server_8.9p1-3ubuntu0.6_amd64.deb 48aea3729edf779f19aada0eedc0a5b0 1534750 debug optional openssh-tests-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb b20a3677a0cb6748a32c335aa4adc4eb 1419452 net optional openssh-tests_8.9p1-3ubuntu0.6_amd64.deb d1a2b61c320ea595c836bd57a5e7f375 19164 net standard openssh_8.9p1-3ubuntu0.6_amd64.buildinfo f85553979d58856dc731d60feb5745e2 8497 raw-translations - openssh_8.9p1-3ubuntu0.6_amd64_translations.tar.gz a1db780407d538c239f230228dd79a4d 17240 debug optional ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.6_amd64.ddeb 6831c1917bb59034d2cf87645c496129 17996 gnome optional ssh-askpass-gnome_8.9p1-3ubuntu0.6_amd64.deb f4276264730629e89526330890862baf 4850 net optional ssh_8.9p1-3ubuntu0.6_all.deb Original-Maintainer: Debian OpenSSH Maintainers