[ubuntu/mantic-security] openssh 1:9.3p1-1ubuntu3.6 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Mon Jul 1 09:37:19 UTC 2024
openssh (1:9.3p1-1ubuntu3.6) mantic-security; urgency=medium
* SECURITY UPDATE: remote code execution via signal handler race
condition (LP: #2070497)
- debian/patches/CVE-2024-6387.patch: don't log in sshsigdie() in log.c.
- CVE-2024-6387
openssh (1:9.3p1-1ubuntu3.3) mantic; urgency=medium
* d/p/gssapi.patch: fix method_gsskeyex structure and
userauth_gsskeyex function regarding changes introduced in upstream
commit dbb339f015c33d63484261d140c84ad875a9e548 ("prepare for
multiple names for authmethods") (LP: #2053146)
* d/t/{ssh-gssapi,util}: ssh-gssapi DEP8 test for gssapi-with-mic
and gssapi-keyex authentication methods
Date: 2024-06-27 14:14:22.481989+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/openssh/1:9.3p1-1ubuntu3.6
-------------- next part --------------
Sorry, changesfile not available.
More information about the mantic-changes
mailing list