Bug#1009363: bullseye-pu: package ruby-net-ssh/1:6.1.0-2+deb11u1

To: Antonio Terceiro <terceiro@debian.org>, 1009363@bugs.debian.org
Subject: Bug#1009363: bullseye-pu: package ruby-net-ssh/1:6.1.0-2+deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 28 May 2022 20:47:53 +0100
Message-id: <[🔎] b1d881c3e5426224083824b7b8d3bde94010112c.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1009363@bugs.debian.org
In-reply-to: <YlVzUspY+rMMaJ8A@debian.org>
References: <YlVzUspY+rMMaJ8A@debian.org> <YlVzUspY+rMMaJ8A@debian.org>

Control: tags -1 + confirmed

On Tue, 2022-04-12 at 09:40 -0300, Antonio Terceiro wrote:
> OpenSSH 8.8 disables RSA signatures using the SHA-1 hash algorithm,
> and
> that breaks clients that do not support stronger algorithms, which is
> the case of the ruby-net-ssh version in bullseye.
> 
> [ Impact ]
> Users of vagrant and capistrano, for example, are not able to connect
> to hosts running OpenSSH 8.8, which includes Debian bookworm but also
> other distributions where OpenSSH 8.8. is already available.
> 
[...]
> The patches are backports of the relevant upstream patches. The first
> adds support for client authentication with RSA + SHA-2. The second
> adds
> support for RSA+SHA-2 in host keys.
> 

Please go ahead.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#1009363: bullseye-pu: package ruby-net-ssh/1:6.1.0-2+deb11u1
  - From: Antonio Terceiro <terceiro@debian.org>

Prev by Date: Bug#1009659: bullseye-pu: package spyder/4.2.1+dfsg1-3
Next by Date: Processed: Re: Bug#1009345: bullseye-pu: package node-moment/2.29.1+ds-2+deb11u1
Previous by thread: Processed: Re: Bug#1009659: bullseye-pu: package spyder/4.2.1+dfsg1-3
Next by thread: Processed: Re: Bug#1009363: bullseye-pu: package ruby-net-ssh/1:6.1.0-2+deb11u1
Index(es):
- Date
- Thread