Re: squeeze update of openssh?
- To: Moritz Muehlenhoff <jmm@debian.org>
- Cc: Yves-Alexis Perez <corsac@debian.org>, Guido Günther <agx@sigxcpu.org>, Ben Hutchings <ben@decadent.org.uk>, Mike Gabriel <sunweaver@debian.org>, debian-lts@lists.debian.org, Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>, Colin Watson <cjwatson@debian.org>, Matthew Vernon <matthew@debian.org>
- Subject: Re: squeeze update of openssh?
- From: Salvatore Bonaccorso <carnil@debian.org>
- Date: Fri, 15 Jan 2016 15:05:23 +0100
- Message-id: <[🔎] 20160115140523.GA13262@lorien.valinor.li>
- Mail-followup-to: Moritz Muehlenhoff <jmm@debian.org>, Yves-Alexis Perez <corsac@debian.org>, Guido Günther <agx@sigxcpu.org>, Ben Hutchings <ben@decadent.org.uk>, Mike Gabriel <sunweaver@debian.org>, debian-lts@lists.debian.org, Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>, Colin Watson <cjwatson@debian.org>, Matthew Vernon <matthew@debian.org>
- In-reply-to: <[🔎] 20160115135543.GA14614@inutil.org>
- References: <[🔎] 20160115104622.GA5647@minobo.das-netzwerkteam.de> <[🔎] 1452864937.2519.5.camel@decadent.org.uk> <[🔎] 20160115134712.GB32596@bogon.m.sigxcpu.org> <[🔎] 1452865833.15013.79.camel@debian.org> <[🔎] 20160115135543.GA14614@inutil.org>
Hi,
On Fri, Jan 15, 2016 at 02:55:43PM +0100, Moritz Muehlenhoff wrote:
> On Fri, Jan 15, 2016 at 02:50:33PM +0100, Yves-Alexis Perez wrote:
> > On ven., 2016-01-15 at 14:47 +0100, Guido Günther wrote:
> > > > I believe Yves-Alexis Perez is handing this.
> > >
> > > I figured Mike's mail is related to
> > >
> > > TEMP-0000000 Eliminate the fallback from untrusted X11-forwarding to
> > > trusted forwarding for cases when the X server disables the SECURITY
> > > extension
> > >
> > > not to CVE-2016-0777 CVE-2016-0778?
> >
> > We've not yet investigated the other, CVE-less vulnerabilities fixed by the
> > last OpenSSH release (whether for the current stables or for LTS).
>
> I don't see how "TEMP-0000000 Eliminate the fallback from untrusted X11-forwarding to
> trusted forwarding for cases when the X server disables the SECURITY
> extension" has additional security implications not covered by CVE-2015-5352?
I'm the one having added the temporary entry, but needs more checking.
CVE-2015-5352 was addressed by
https://anongit.mindrot.org/openssh.git/commit/?h=V_6_9&id=1bf477d3cdf1a864646d59820878783d42357a1d
The new temporary entry is related to
https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c
Hope this helps for the further checking. If it turns out to be not an
issue we can drop the entry again.
Regards,
Salvatore
Reply to: