Re: squeeze update of openssh?

To: Guido Günther <agx@sigxcpu.org>, Ben Hutchings <ben@decadent.org.uk>
Cc: Mike Gabriel <sunweaver@debian.org>, debian-lts@lists.debian.org, Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>, Colin Watson <cjwatson@debian.org>, Matthew Vernon <matthew@debian.org>
Subject: Re: squeeze update of openssh?
From: Yves-Alexis Perez <corsac@debian.org>
Date: Fri, 15 Jan 2016 14:50:33 +0100
Message-id: <[🔎] 1452865833.15013.79.camel@debian.org>
In-reply-to: <[🔎] 20160115134712.GB32596@bogon.m.sigxcpu.org>
References: <[🔎] 20160115104622.GA5647@minobo.das-netzwerkteam.de> <[🔎] 1452864937.2519.5.camel@decadent.org.uk> <[🔎] 20160115134712.GB32596@bogon.m.sigxcpu.org>

On ven., 2016-01-15 at 14:47 +0100, Guido Günther wrote:
> > I believe Yves-Alexis Perez is handing this.
> 
> I figured Mike's mail is related to
> 
>     TEMP-0000000 Eliminate the fallback from untrusted X11-forwarding to
> trusted forwarding for cases when the X server disables the SECURITY
> extension
> 
> not to CVE-2016-0777 CVE-2016-0778?

We've not yet investigated the other, CVE-less vulnerabilities fixed by the
last OpenSSH release (whether for the current stables or for LTS).

Regards,
-- 
Yves-Alexis

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: squeeze update of openssh?
  - From: Moritz Muehlenhoff <jmm@debian.org>
- Re: squeeze update of openssh?
  - From: Colin Watson <cjwatson@debian.org>
- Re: squeeze update of openssh?
  - From: Mike Gabriel <sunweaver@debian.org>

References:
- squeeze update of openssh?
  - From: Mike Gabriel <sunweaver@debian.org>
- Re: squeeze update of openssh?
  - From: Ben Hutchings <ben@decadent.org.uk>
- Re: squeeze update of openssh?
  - From: Guido Günther <agx@sigxcpu.org>

Prev by Date: Re: squeeze update of openssh?
Next by Date: Re: squeeze update of openssh?
Previous by thread: Re: squeeze update of openssh?
Next by thread: Re: squeeze update of openssh?
Index(es):
- Date
- Thread