Format: 1.8 Date: Fri, 14 Aug 2015 07:26:18 -0400 Source: openssh Binary: openssh-client openssh-server openssh-sftp-server ssh ssh-krb5 ssh-askpass-gnome openssh-client-udeb openssh-server-udeb Architecture: ppc64el ppc64el_translations Version: 1:6.7p1-5ubuntu1.2 Distribution: vivid Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: openssh-client - secure shell (SSH) client, for secure access to remote machines openssh-client-udeb - secure shell client for the Debian installer (udeb) openssh-server - secure shell (SSH) server, for secure access from remote machines openssh-server-udeb - secure shell server for the Debian installer (udeb) openssh-sftp-server - secure shell (SSH) sftp server module, for SFTP access from remot ssh - secure shell client and server (metapackage) ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad ssh-krb5 - secure shell client and server (transitional package) Changes: openssh (1:6.7p1-5ubuntu1.2) vivid-security; urgency=medium . * SECURITY UPDATE: possible user impersonation via PAM support - debian/patches/pam-security-1.patch: don't resend username to PAM in monitor.c, monitor_wrap.c. - CVE number pending * SECURITY UPDATE: use-after-free in PAM support - debian/patches/pam-security-2.patch: fix use after free in monitor.c. - CVE number pending * SECURITY UPDATE: - debian/patches/CVE-2015-5600.patch: only query each keyboard-interactive device once per authentication request in auth2-chall.c. - CVE-2015-5600 * SECURITY UPDATE: X connections access restriction bypass - debian/patches/CVE-2015-5352.patch: refuse ForwardX11Trusted=no connections attempted after ForwardX11Timeout expires in channels.c, channels.h, clientloop.c. - CVE-2015-5352 Checksums-Sha1: 19605ba8ba2de30ff04ec021173e7bd8e835af48 586576 openssh-client_6.7p1-5ubuntu1.2_ppc64el.deb 042f9676b7544aa3faddb8f1210850f08ef8af91 353176 openssh-server_6.7p1-5ubuntu1.2_ppc64el.deb 04a95ac1654a2f3d1f40e274a2a91c0d4ce75e17 40102 openssh-sftp-server_6.7p1-5ubuntu1.2_ppc64el.deb 5c7e370b9c0bfc17b5b6897f78ed6edebbcc789b 14640 ssh-askpass-gnome_6.7p1-5ubuntu1.2_ppc64el.deb 21d4c1c9a6fadde3f38b0de33967791f14c57253 235710 openssh-client-udeb_6.7p1-5ubuntu1.2_ppc64el.udeb 5bb84e4c68819e2d9a7cba6603967ca332d4e94a 261868 openssh-server-udeb_6.7p1-5ubuntu1.2_ppc64el.udeb 0d20763d530fbbd4e80e9b8a7b3b5088e56affbb 1207870 openssh-client-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb beea5749dde321544d4e4fc3eae8e105122d304e 672564 openssh-server-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 0b4fce36debbed2265782ac325283926ad52336b 91698 openssh-sftp-server-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb f9f0b3a1db1e146b43f60b422bcb58c1f1b82257 13964 ssh-askpass-gnome-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 1a6f11b84e537355b4db1c5683598704226ab4d9 491714 openssh-client-udeb-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 43701be353cc2a4c6502540c6caffe3b1d30523b 576268 openssh-server-udeb-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 0322f86aa0e0a7b6c11c7b37f2269c955e94e9c3 8477 openssh_6.7p1-5ubuntu1.2_ppc64el_translations.tar.gz Checksums-Sha256: 6ce75d122d9a619df6685103a3f9be37f4dd4781a87ee08a5f9b18780e902698 586576 openssh-client_6.7p1-5ubuntu1.2_ppc64el.deb 35ab1f1ee988e8fc78c31c1a9b2e5ca7b45f8f9eb8f7bb4534871fa4597cb2c8 353176 openssh-server_6.7p1-5ubuntu1.2_ppc64el.deb 7eccca1b7e306bfaaccf3afd92e22451ff1d2eaea80274351f4918be37017d33 40102 openssh-sftp-server_6.7p1-5ubuntu1.2_ppc64el.deb c6a273989cb124ca2c4d6af8623edf8157f6b267b7baf965d4bb7def2a494cf4 14640 ssh-askpass-gnome_6.7p1-5ubuntu1.2_ppc64el.deb 46d3d94ec2be684b1345daebe29735c7d5df0b08078e85606c99a762ff7d30bb 235710 openssh-client-udeb_6.7p1-5ubuntu1.2_ppc64el.udeb 1d1147b74c1875491d62811d4f20ac792fd42588f9e514a6191c249287017efd 261868 openssh-server-udeb_6.7p1-5ubuntu1.2_ppc64el.udeb eb4b20334befaedd1e1175cd1266083bb76db827bc6adcdd03cc556f07d89492 1207870 openssh-client-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb b2048f21376f183aceeec2d351a48150fbaa80d86f6d318dadf85eef07b5882b 672564 openssh-server-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 3f82da0725a7de2042bfe8636ade5854c02a1bd1ba99d91ddd392cf9bfebbac5 91698 openssh-sftp-server-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 6cef6883f7df6db80f6981b7a6127c63b2689eeb9d4759200b3594f9c76dc5f9 13964 ssh-askpass-gnome-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 9ab4dc086b3d55a87421dc5794c4e33b62f3ca9759b0feb790c6a6f68841b358 491714 openssh-client-udeb-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb e9dd3f217de175b406e99fdf011631c723dd55c64b18b5d1919b9ebbc80d159d 576268 openssh-server-udeb-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb e37c37147896f6cf9f21ec3c8385dd9bef8edb402b0894fbd5ded631225729d0 8477 openssh_6.7p1-5ubuntu1.2_ppc64el_translations.tar.gz Files: 47dc60e42d597c7707866a42cd8a7084 586576 net standard openssh-client_6.7p1-5ubuntu1.2_ppc64el.deb e2d6ae89e09f0ff9eb28b357690249f7 353176 net optional openssh-server_6.7p1-5ubuntu1.2_ppc64el.deb d35d07b6fe134aa4197f79e01d71b7ae 40102 net optional openssh-sftp-server_6.7p1-5ubuntu1.2_ppc64el.deb da6a8498d642f3a6496d225abcc98090 14640 gnome optional ssh-askpass-gnome_6.7p1-5ubuntu1.2_ppc64el.deb 82b8d1eb8c2e10ad23ba19d816e2e72d 235710 debian-installer optional openssh-client-udeb_6.7p1-5ubuntu1.2_ppc64el.udeb 66e961eb4d9a3165974a29359310adb4 261868 debian-installer optional openssh-server-udeb_6.7p1-5ubuntu1.2_ppc64el.udeb f09bc7b0b6e4298805ecd9bd94a6e39a 1207870 net extra openssh-client-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 60a59207d4fa55cffc0b3e5906f774da 672564 net extra openssh-server-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 1c6405775b1e6900cd35c8c933bf86e5 91698 net extra openssh-sftp-server-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 6087ae7ab0f436dd40dee4c4717c2654 13964 gnome extra ssh-askpass-gnome-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 39c97afdc7fe2ce00de78a7b2bf59c91 491714 debian-installer extra openssh-client-udeb-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 6a8f4d65b879fcc76863a20f80c52023 576268 debian-installer extra openssh-server-udeb-dbgsym_6.7p1-5ubuntu1.2_ppc64el.ddeb 6543b689d6e50a23a1a8265f4bb60b0d 8477 raw-translations - openssh_6.7p1-5ubuntu1.2_ppc64el_translations.tar.gz Original-Maintainer: Debian OpenSSH Maintainers