林博仁 Buo-ren Lin => Ubuntu 台灣社群: openssh (1:9.3p1-1ubuntu3.2) mantic-security; urgency=medium * SECURITY UPDATE: incomplete PKCS#11 destination constraints - debian/patches/CVE-2023-51384.patch: apply destination constraints to all p11 keys in ssh-agent.c. - CVE-2023-51384 * SECURITY UPDATE: command injection via shell metacharacters - debian/patches/CVE-2023-51385.patch: ban user/hostnames with most shell metacharacters in ssh.c. - CVE-2023-51385 -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 02 Jan 2024 11:33:40 -0500 openssh (1:9.3p1-1ubuntu3.1) mantic-security; urgency=medium * SECURITY UPDATE: Prefix truncation attack on BPP - debian/patches/CVE-2023-48795.patch: implement "strict key exchange" in PROTOCOL, kex.c, kex.h, packet.c, sshconnect2.c. - CVE-2023-48795 -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 18 Dec 2023 10:39:17 -0500 #6618db4d1405f872118419f7

林博仁 Buo-ren Lin says to Ubuntu 台灣社群

openssh (1:9.3p1-1ubuntu3.2) mantic-security; urgency=medium * SECURITY UPDATE: incomplete PKCS#11 destination constraints - debian/patches/CVE-2023-51384.patch: apply destination constraints to all p11 keys in ssh-agent.c. - CVE-2023-51384 * SECURITY UPDATE: command injection via shell metacharacters - debian/patches/CVE-2023-51385.patch: ban user/hostnames with most shell metacharacters in ssh.c. - CVE-2023-51385 -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Tue, 02 Jan 2024 11:33:40 -0500 openssh (1:9.3p1-1ubuntu3.1) mantic-security; urgency=medium * SECURITY UPDATE: Prefix truncation attack on BPP - debian/patches/CVE-2023-48795.patch: implement "strict key exchange" in PROTOCOL, kex.c, kex.h, packet.c, sshconnect2.c. - CVE-2023-48795 -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Mon, 18 Dec 2023 10:39:17 -0500

at Fri, Apr 12, 2024 2:57 PM