[ubuntu/jammy-updates] twisted 22.1.0-2ubuntu2.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu May 5 07:28:15 UTC 2022
twisted (22.1.0-2ubuntu2.1) jammy-security; urgency=medium
* SECURITY UPDATE: Parsing of SSH version identifier field during an SSH
handshake can result in a denial of service when excessively large packets
are received
- debian/patches/CVE-2022-21716-*.patch: Ensure that length of received
handshake buffer is checked, prior to processing version string in
src/twisted/conch/ssh/transport.py and
src/twisted/conch/test/test_transport.py
- CVE-2022-21716
Date: 2022-05-04 02:01:10.399200+00:00
Changed-By: Ray Veldkamp <ray.veldkamp at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/twisted/22.1.0-2ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list