[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1110034: bookworm-pu: package openssh/1:9.2p1-2+deb12u7

Control: tag -1 confirmed

On Mon, Jul 28, 2025 at 01:18:32PM +0100, Colin Watson wrote:
> [ Other info ]
> To minimize the change of users running into this during upgrades 
> shortly after the release of trixie, I think we need to get this into 
> stable-updates rather than waiting for the next scheduled point release.  
> Let me know if there's anything else I need to do for that.

Agree. The SUA text will have your name on it; how about the following?

| OpenSSH in bookworm contains a too-strict check of OpenSSL compatibility
| when seeding the internal random number generator. As a result, users may
| be unable to connect to remote systems with a newer OpenSSL, for example
| when an upgrade in progress.
| 
| This update relaxes the check, allowing users to re-connect to remote
| systems in the event of an interrupted upgrade.

-- 
Jonathan Wiltshire                                      jmw@debian.org
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51
ed25519/0x196418AAEB74C8A1: CA619D65A72A7BADFC96D280196418AAEB74C8A1
Reply to: