Format: 1.8 Date: Tue, 02 Jan 2024 11:54:04 -0500 Source: openssh Binary: openssh-client openssh-server openssh-sftp-server openssh-tests ssh-askpass-gnome Built-For-Profiles: noudeb Architecture: armhf armhf_translations Version: 1:8.9p1-3ubuntu0.6 Distribution: jammy Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: openssh-client - secure shell (SSH) client, for secure access to remote machines openssh-server - secure shell (SSH) server, for secure access from remote machines openssh-sftp-server - secure shell (SSH) sftp server module, for SFTP access from remot openssh-tests - OpenSSH regression tests ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad Changes: openssh (1:8.9p1-3ubuntu0.6) jammy-security; urgency=medium . * SECURITY UPDATE: incomplete PKCS#11 destination constraints - debian/patches/CVE-2023-51384.patch: apply destination constraints to all p11 keys in ssh-agent.c. - CVE-2023-51384 * SECURITY UPDATE: command injection via shell metacharacters - debian/patches/CVE-2023-51385.patch: ban user/hostnames with most shell metacharacters in ssh.c. - CVE-2023-51385 Checksums-Sha1: 0325995ebc14518e5037bb3aef16d8efa47de13a 3508414 openssh-client-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 72fc99688207f93ddf51e645ffdbf292cb8d1d0e 836972 openssh-client_8.9p1-3ubuntu0.6_armhf.deb 423a16b80a6506222a403f519d9dc11d3da3c31a 937256 openssh-server-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 8c5f2f0b4275a00bdaf21e1be3fdb14094fa8e2f 453686 openssh-server_8.9p1-3ubuntu0.6_armhf.deb 0431c3eb0067833b60086dd6bbed411715df2d72 167284 openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 18aea8f550fa582ef0e35af08b184fb83b557928 65156 openssh-sftp-server_8.9p1-3ubuntu0.6_armhf.deb 8ffeb93538b8812d38b363a5385012506c03083a 2783584 openssh-tests-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb d81602726fbe24d248ccc2cd80c4eeeafc33a112 897430 openssh-tests_8.9p1-3ubuntu0.6_armhf.deb 1eeee77c59243c8d4978d4877fb1d55e7ad2b2ce 18761 openssh_8.9p1-3ubuntu0.6_armhf.buildinfo a0d8d1536af357ec954a53f6bc489ec51bd71e6c 8513 openssh_8.9p1-3ubuntu0.6_armhf_translations.tar.gz c7a975f2bcc20c26e6a11d8d2bfe58135e8f8b82 16862 ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb c18e7558faa1e66a19864ddc0e3da6241475b407 17330 ssh-askpass-gnome_8.9p1-3ubuntu0.6_armhf.deb Checksums-Sha256: 9ff7a845cf01ecb16538f16c3f237bd25f5c50d1b85ac9be8eb689fd75ce9b1c 3508414 openssh-client-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb d56a44d43d76fcf91275df669c2aeb63e90f05a8dc5b0f76634d78d3651519b3 836972 openssh-client_8.9p1-3ubuntu0.6_armhf.deb 65cea3170d4da6f489b16a0f4c9d2c033288313a2d1a323ee723caf2843c77c9 937256 openssh-server-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 1c7b22b611533a19409f9e06dd1dcff06c372239d3daed96e5e144f1fa15c2f7 453686 openssh-server_8.9p1-3ubuntu0.6_armhf.deb ee3a977a574354dc4d822696284f23e397c8873974e3ba6b3304553a163bf3a5 167284 openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 439950b669b294b23acdacbed3ba4fed39c919ff55b6d76824f5a8767774d149 65156 openssh-sftp-server_8.9p1-3ubuntu0.6_armhf.deb b95d9a48c12204faa7cac7fba3bbe809b15df86244404e88ac21984fcf7bcd39 2783584 openssh-tests-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb e9027d8ebb061e12f1917c069753b508e2ee32881cccc67cd103f68ecdda8519 897430 openssh-tests_8.9p1-3ubuntu0.6_armhf.deb 0018e46b742cc6de388da1fa34b69c9d403bc7387ff6358a2c9e1d2aa474489e 18761 openssh_8.9p1-3ubuntu0.6_armhf.buildinfo 3af6c6fd87629456421dff7471942c2697f019b2e0217bd4f5571a744e7982a9 8513 openssh_8.9p1-3ubuntu0.6_armhf_translations.tar.gz 7f2049f033060fc4861777da90d25bb291eece1319fc1293ec63c591c8f91438 16862 ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 5f5e25e4dc0859f982a71a92b9317832a3aaf5c81221be2e4099b5532fde011a 17330 ssh-askpass-gnome_8.9p1-3ubuntu0.6_armhf.deb Files: 1d82e04e363deec81d4a2884526fe39a 3508414 debug optional openssh-client-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb a87d348cda9f86f7ae6f5effadbe73db 836972 net standard openssh-client_8.9p1-3ubuntu0.6_armhf.deb 284bf538a216a6734fa6055522aa5dce 937256 debug optional openssh-server-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 6fa77091cf9ed2b0ba70d3b16138cf17 453686 net optional openssh-server_8.9p1-3ubuntu0.6_armhf.deb dd7d739074a339991cf04f871e792d4f 167284 debug optional openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb dc838ca6e026351b4dc0635a58da31f8 65156 net optional openssh-sftp-server_8.9p1-3ubuntu0.6_armhf.deb a181fa9bcb238357a6665f3fff6b4bee 2783584 debug optional openssh-tests-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 7fd007fb13f892462ca33e0eda171632 897430 net optional openssh-tests_8.9p1-3ubuntu0.6_armhf.deb 6146d599e3b6789d8a0bfa1d6819345c 18761 net standard openssh_8.9p1-3ubuntu0.6_armhf.buildinfo 86b555a6515cb17aea8d72457adee9c3 8513 raw-translations - openssh_8.9p1-3ubuntu0.6_armhf_translations.tar.gz 8b0ff5228f94f2ede375698a3487f22e 16862 debug optional ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.6_armhf.ddeb 8d8818089de1101b21f3175db6bd15ed 17330 gnome optional ssh-askpass-gnome_8.9p1-3ubuntu0.6_armhf.deb Original-Maintainer: Debian OpenSSH Maintainers