[ubuntu/jammy-security] openssh 1:8.9p1-3ubuntu0.10 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Mon Jul 1 09:15:31 UTC 2024
openssh (1:8.9p1-3ubuntu0.10) jammy-security; urgency=medium
* SECURITY UPDATE: remote code execution via signal handler race
condition (LP: #2070497)
- debian/patches/CVE-2024-6387.patch: don't log in sshsigdie() in log.c.
- CVE-2024-6387
openssh (1:8.9p1-3ubuntu0.7) jammy; urgency=medium
* d/p/gssapi.patch: fix method_gsskeyex structure and
userauth_gsskeyex function regarding changes introduced in upstream
commit dbb339f015c33d63484261d140c84ad875a9e548 ("prepare for
multiple names for authmethods") (LP: #2053146)
* d/t/{ssh-gssapi,util}: ssh-gssapi DEP8 test for gssapi-with-mic
and gssapi-keyex authentication methods
Date: 2024-06-27 14:14:18.084199+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/openssh/1:8.9p1-3ubuntu0.10
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list