[ubuntu/trusty-proposed] openssh 1:6.2p2-6ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Fri Nov 8 14:32:15 UTC 2013 

openssh (1:6.2p2-6ubuntu1) trusty; urgency=low

  * SECURITY UPDATE: code execution via memory corruption when using an
    AES-GCM cipher
    - debian/patches/CVE-2013-4548.patch: properly initialize MAC context
      in monitor_wrap.c.
    - CVE-2013-4548

Date: Fri, 08 Nov 2013 07:51:18 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/openssh/1:6.2p2-6ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 08 Nov 2013 07:51:18 -0500
Source: openssh
Binary: openssh-client openssh-server ssh ssh-krb5 ssh-askpass-gnome openssh-client-udeb openssh-server-udeb
Architecture: source
Version: 1:6.2p2-6ubuntu1
Distribution: trusty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 openssh-client - secure shell (SSH) client, for secure access to remote machines
 openssh-client-udeb - secure shell client for the Debian installer (udeb)
 openssh-server - secure shell (SSH) server, for secure access from remote machines
 openssh-server-udeb - secure shell server for the Debian installer (udeb)
 ssh        - secure shell client and server (metapackage)
 ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad
 ssh-krb5   - secure shell client and server (transitional package)
Changes: 
 openssh (1:6.2p2-6ubuntu1) trusty; urgency=low
 .
   * SECURITY UPDATE: code execution via memory corruption when using an
     AES-GCM cipher
     - debian/patches/CVE-2013-4548.patch: properly initialize MAC context
       in monitor_wrap.c.
     - CVE-2013-4548
Checksums-Sha1: 
 f11a469d791cc63f3ce3b30fc8504d38446c0499 2637 openssh_6.2p2-6ubuntu1.dsc
 0f28f7fa442c48ef9a9da51be1860953c4790f52 172400 openssh_6.2p2-6ubuntu1.debian.tar.gz
Checksums-Sha256: 
 45410528e073a72c81581750344c83d8491129b99cae9d2f1a3fff2619866ebe 2637 openssh_6.2p2-6ubuntu1.dsc
 d9477d82b0f78a5a812174f9425018d8eebd42f2c4a21e93446922462b0eaedf 172400 openssh_6.2p2-6ubuntu1.debian.tar.gz
Files: 
 4297f810c84a2d9d67fa4675ce56ced3 2637 net standard openssh_6.2p2-6ubuntu1.dsc
 6c2da7fa109574a2457c5adf11e76c8a 172400 net standard openssh_6.2p2-6ubuntu1.debian.tar.gz
Original-Maintainer: Debian OpenSSH Maintainers <debian-ssh at lists.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)

iQIcBAEBCgAGBQJSfPV3AAoJEGVp2FWnRL6Tr2kP/34KDDNLF+QnOk0O9t/Om6WD
azkfH4uSUmPTHUlbDrf22q3Awdbfuu7EXPJ70tArcTOLUw8sg38pdpUBzNc3f3Hx
acah8TQfA+2oCVvXNPheOgOaCUqGsygQcX6wPFi1ACVIUpuRHDR8aAK/0TnI4MOs
0oqUHnzSA1EKvYS0O2FzM/sHgEtH4vmfeJfiGcSBP4fv0aFZloPV6FG+ocT+Uisz
LOf840aH0fHuT/gZjLMhB25eT84kOoLB+6OBe4qNbvG2WeLUuOtsSYpbnY9YuVJC
jarSFDzImcWhgP47HX4FKGqIy6/17HdkhCaCru2SHmMeGuk1Tbqvvq19LvUzhZpb
u48Zh+dsDa4e6cwIVm7wCa9yTeTvyLi3HuDGb1YB5NoEaCCcICYV7mHEYyGZXm41
qqHII3XRs9DHrv5Vu3W4kuwXQ564Irdkv3P/TNDQpm6zXCtvaqXruF7OO9YKvD9r
cYGJ8BNi974c+KSXm2u0Ao4Kl/qHAOyV2h9YW2iFrwU7vcHM2QCGxy8jcwV1CHk8
4XL4zQTwWqFXIMeaUaHqIa6K3o3xDnbnS7xxno9D9mZYjqWGv+xuqs4nLZzksgs2
amFLf/6nb9EJ/yMFDGxiZ67MfQ/EkGS1N0RY2FecJUZDsTHjcy1kT1nF0GFJyYMe
jEzObnmTK+e3oisTkj4a
=rAeD
-----END PGP SIGNATURE-----

More information about the Trusty-changes mailing list