[ubuntu/noble-security] openssh 1:9.6p1-3ubuntu13.11 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Apr 24 12:27:35 UTC 2025
openssh (1:9.6p1-3ubuntu13.11) noble-security; urgency=medium
* SECURITY UPDATE: incorrect DisableForwarding directive behaviour
- debian/patches/CVE-2025-32728.patch: fix logic error in session.c.
- CVE-2025-32728
openssh (1:9.6p1-3ubuntu13.10) noble; urgency=medium
* d/p/systemd-socket-activation.patch: don't clear rexec_flag
(LP: #2071815)
openssh (1:9.6p1-3ubuntu13.9) noble; urgency=medium
[ Lukas Märdian ]
* d/p/gssapi.patch: Fix interaction between gssapi-keyex and pubkey auth
(LP: #2028282)
Don't prefer host-bound public key signatures if there was no initial
host key, as is the case when using GSS-API key exchange.
Thanks to Colin Watson for providing patches via Debian Salsa (7d291bb)
+ d/t/ssh-gssapi: Fix typo in autopkgtest
+ d/t/ssh-gssapi: Test interaction between gssapi-keyex and pubkey auth.
[ Nick Rosbrook ]
* sshd-socket-generator: do not parse server match config
(LP: #2076023)
Date: 2025-04-22 17:27:46.710632+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/openssh/1:9.6p1-3ubuntu13.11
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list