Accepted: openssh 1:4.7p1-9ubuntu1 (source)

Colin Watson cjwatson at ubuntu.com
Tue May 13 14:15:12 BST 2008 

Accepted:
 OK: openssh_4.7p1.orig.tar.gz
 OK: openssh_4.7p1-9ubuntu1.diff.gz
 OK: openssh_4.7p1-9ubuntu1.dsc
     -> Component: main Section: net

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 13 May 2008 12:36:59 +0100
Source: openssh
Binary: openssh-client openssh-server ssh ssh-krb5 ssh-askpass-gnome openssh-client-udeb openssh-server-udeb
Architecture: source
Version: 1:4.7p1-9ubuntu1
Distribution: intrepid
Urgency: critical
Maintainer: Colin Watson <cjwatson at ubuntu.com>
Changed-By: Colin Watson <cjwatson at ubuntu.com>
Description: 
 openssh-client - secure shell client, an rlogin/rsh/rcp replacement
 openssh-client-udeb - secure shell client for the Debian installer
 openssh-server - secure shell server, an rshd replacement
 openssh-server-udeb - secure shell server for the Debian installer
 ssh        - secure shell client and server (metapackage)
 ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad
 ssh-krb5   - secure shell client and server (transitional package)
Changes: 
 openssh (1:4.7p1-9ubuntu1) intrepid; urgency=critical
 .
   * Resynchronise with Debian. Remaining changes:
     - Add support for registering ConsoleKit sessions on login.
 .
 openssh (1:4.7p1-9) unstable; urgency=critical
 .
   * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-8.
   * Mitigate OpenSSL security vulnerability (CVE-2008-0166):
     - Add key blacklisting support. Keys listed in
       /etc/ssh/blacklist.TYPE-LENGTH will be rejected for authentication by
       sshd, unless "PermitBlacklistedKeys yes" is set in
       /etc/ssh/sshd_config.
     - Add a new program, ssh-vulnkey, which can be used to check keys
       against these blacklists.
     - Depend on openssh-blacklist.
     - Force dependencies on libssl0.9.8 / libcrypto0.9.8-udeb to at least
       0.9.8g-9.
     - Automatically regenerate known-compromised host keys, with a
       critical-priority debconf note. (I regret that there was no time to
       gather translations.)
Files: 
 f082ed86fb72e4c061d991bef6ca70f9 1195 net standard openssh_4.7p1-9ubuntu1.dsc
 9641181027f413599326e0ae2a610e56 205064 net standard openssh_4.7p1-9ubuntu1.diff.gz
Original-Maintainer: Debian OpenSSH Maintainers <debian-ssh at lists.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Colin Watson <cjwatson at debian.org> -- Debian developer

iD8DBQFIKX2H9t0zAhD6TNERAgGxAJ9EvW9/T2N6RbnYSH/LvImLsCmzKQCbBomt
ULkhgY19h0lVi/EMkTnr3Vw=
=EobJ
-----END PGP SIGNATURE-----

More information about the Intrepid-changes mailing list