Accepted openssh 1:4.3p2-5~bpo.1 (source i386 all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 17 Nov 2006 09:39:55 +0100
Source: openssh
Binary: ssh-askpass-gnome openssh-client-udeb ssh openssh-server openssh-client openssh-server-udeb
Architecture: source i386 all
Version: 1:4.3p2-5~bpo.1
Distribution: sarge-backports
Urgency: high
Maintainer: Matthew Vernon <matthew@debian.org>
Changed-By: Norbert Tretkowski <nobse@backports.org>
Description:
openssh-client - Secure shell client, an rlogin/rsh/rcp replacement
openssh-client-udeb - Secure shell client for the Debian installer (udeb)
openssh-server - Secure shell server, an rshd replacement
openssh-server-udeb - Secure shell server for the Debian installer (udeb)
ssh - Secure shell client and server (transitional package)
ssh-askpass-gnome - under X, asks user for a passphrase for ssh-add
Closes: 369395 381942 382966 388946 389995 390612 391081
Changes:
openssh (1:4.3p2-5~bpo.1) sarge-backports; urgency=low
.
* Rebuilt for sarge.
* Remove versioned Build-Dependency on libssl-dev, as the maintainer says it
can be safely ignored.
* Pass --without-zlib-version-check to configure as zlib has already been
fixed in sarge by DSA-763-1.
* Removed -Wno-pointer-sign from configure.
.
openssh (1:4.3p2-5) unstable; urgency=low
.
* Remove ssh/insecure_telnetd check altogether (closes: #391081).
* debconf template translations:
- Update Danish (thanks, Claus Hindsgaul; closes: #390612).
.
openssh (1:4.3p2-4) unstable; urgency=high
.
* Backport from 4.4p1 (since I don't have an updated version of the GSSAPI
patch yet):
- CVE-2006-4924: Fix a pre-authentication denial of service found by
Tavis Ormandy, that would cause sshd(8) to spin until the login grace
time expired (closes: #389995).
- CVE-2006-5051: Fix an unsafe signal hander reported by Mark Dowd. The
signal handler was vulnerable to a race condition that could be
exploited to perform a pre-authentication denial of service. On
portable OpenSSH, this vulnerability could theoretically lead to
pre-authentication remote code execution if GSSAPI authentication is
enabled, but the likelihood of successful exploitation appears remote.
.
* Read /etc/default/locale as well as /etc/environment (thanks, Raphaël
Hertzog; closes: #369395).
* Remove no-longer-used ssh/insecure_rshd debconf template.
* Make ssh/insecure_telnetd Type: error (closes: #388946).
.
* debconf template translations:
- Update Portuguese (thanks, Rui Branco; closes: #381942).
- Update Spanish (thanks, Javier Fernández-Sanguino Peña;
closes: #382966).
Files:
e97000e24b70a2fb0923d8c75dda0c67 1031 net standard openssh_4.3p2-5~bpo.1.dsc
3fa219957d103296425f2e818a875b84 162780 net standard openssh_4.3p2-5~bpo.1.diff.gz
919f7382902aa11e1264fe0eda4ab27e 1064 net extra ssh_4.3p2-5~bpo.1_all.deb
207b539c187f065c4efd9c0eb8bf556b 591020 net standard openssh-client_4.3p2-5~bpo.1_i386.deb
3a82671cfa2e95fad6b1708da29b6e31 213916 net optional openssh-server_4.3p2-5~bpo.1_i386.deb
972342ecc1599239b96f38544e4e89d8 98226 gnome optional ssh-askpass-gnome_4.3p2-5~bpo.1_i386.deb
1a58b6f81d3a4a19c47123fba851d4e0 153584 debian-installer optional openssh-client-udeb_4.3p2-5~bpo.1_i386.udeb
f87606fa22d86cf255a033782028580b 161662 debian-installer optional openssh-server-udeb_4.3p2-5~bpo.1_i386.udeb
package-type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFFXXhMaQg4bsmP4qERAoY/AJ45NGPkvTCPu+OvSS0gd/tJa8SgTwCg2NWN
H28xj6O43DaG/mxiFFO8lFE=
=SUsF
-----END PGP SIGNATURE-----
Accepted:
openssh-client-udeb_4.3p2-5~bpo.1_i386.udeb
to pool/main/o/openssh/openssh-client-udeb_4.3p2-5~bpo.1_i386.udeb
openssh-client_4.3p2-5~bpo.1_i386.deb
to pool/main/o/openssh/openssh-client_4.3p2-5~bpo.1_i386.deb
openssh-server-udeb_4.3p2-5~bpo.1_i386.udeb
to pool/main/o/openssh/openssh-server-udeb_4.3p2-5~bpo.1_i386.udeb
openssh-server_4.3p2-5~bpo.1_i386.deb
to pool/main/o/openssh/openssh-server_4.3p2-5~bpo.1_i386.deb
openssh_4.3p2-5~bpo.1.diff.gz
to pool/main/o/openssh/openssh_4.3p2-5~bpo.1.diff.gz
openssh_4.3p2-5~bpo.1.dsc
to pool/main/o/openssh/openssh_4.3p2-5~bpo.1.dsc
ssh-askpass-gnome_4.3p2-5~bpo.1_i386.deb
to pool/main/o/openssh/ssh-askpass-gnome_4.3p2-5~bpo.1_i386.deb
ssh_4.3p2-5~bpo.1_all.deb
to pool/main/o/openssh/ssh_4.3p2-5~bpo.1_all.deb
Reply to: