Format: 1.8 Date: Thu, 05 May 2016 07:54:01 -0400 Source: openssh Binary: openssh-client openssh-server openssh-sftp-server ssh ssh-krb5 ssh-askpass-gnome openssh-client-udeb openssh-server-udeb Architecture: amd64 amd64_translations all Version: 1:6.9p1-2ubuntu0.2 Distribution: wily Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: openssh-client - secure shell (SSH) client, for secure access to remote machines openssh-client-udeb - secure shell client for the Debian installer (udeb) openssh-server - secure shell (SSH) server, for secure access from remote machines openssh-server-udeb - secure shell server for the Debian installer (udeb) openssh-sftp-server - secure shell (SSH) sftp server module, for SFTP access from remot ssh - secure shell client and server (metapackage) ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad ssh-krb5 - secure shell client and server (transitional package) Changes: openssh (1:6.9p1-2ubuntu0.2) wily-security; urgency=medium . * SECURITY UPDATE: privilege escalation via environment files when UseLogin is configured - debian/patches/CVE-2015-8325.patch: ignore PAM environment vars when UseLogin is enabled in session.c. - CVE-2015-8325 * SECURITY UPDATE: denial of service via cradted network traffic - debian/patches/CVE-2016-1907.patch: fix OOB read in packet code in packet.c. - CVE-2016-1907 * SECURITY UPDATE: fallback from untrusted X11-forwarding to trusted - debian/patches/CVE-2016-1908-1.patch: use stack memory in clientloop.c. - debian/patches/CVE-2016-1908-2.patch: eliminate fallback in clientloop.c, clientloop.h, mux.c, ssh.c. - CVE-2016-1908 * SECURITY UPDATE: shell-command restrictions bypass via crafted X11 forwarding data - debian/patches/CVE-2016-3115.patch: sanitise characters destined for xauth in session.c. - CVE-2016-3115 Checksums-Sha1: d3518a4ac6cec325175b3b6bebf80ca8f790785b 1096504 openssh-client-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb c0a25294d152d063e5dbf35492e5a1c47d76b68a 528188 openssh-client-udeb-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 5b52ad288c8fe115d1ea800c5e6ba248bf3bf7e0 278838 openssh-client-udeb_6.9p1-2ubuntu0.2_amd64.udeb 0c4b9af42e21d2b45f30c1d58d07282fa8e9dbfe 604372 openssh-client_6.9p1-2ubuntu0.2_amd64.deb d86bd74d8d9abe0ab98322bab41cb17c3d445f15 611042 openssh-server-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 3e3b6b3f33f3924203785fd21766c68db410e594 588326 openssh-server-udeb-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 3d51b6f67c92bfc1e699ff8d7c9ed5e9ca379336 294608 openssh-server-udeb_6.9p1-2ubuntu0.2_amd64.udeb 78269b212527a9b27b2647719008ad7092820db5 348588 openssh-server_6.9p1-2ubuntu0.2_amd64.deb a909fa39d05aa44e13a49be719dc165d9c911a86 74140 openssh-sftp-server-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 23b8b89ef678437c087d1838d48293347edaed19 38392 openssh-sftp-server_6.9p1-2ubuntu0.2_amd64.deb 41a8d765e494b1c0ec05805df9e58a006d57064d 8418 openssh_6.9p1-2ubuntu0.2_amd64_translations.tar.gz e742ec640645537aa76c64c818198e888585d6ba 11564 ssh-askpass-gnome-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 45563cc80c7debeaa5a0a517e09f1a335838cab2 14474 ssh-askpass-gnome_6.9p1-2ubuntu0.2_amd64.deb 53f33688cf9e1c0ccdb51fa426ea8a00eeafc5af 7952 ssh-krb5_6.9p1-2ubuntu0.2_all.deb 17eb60383ae94516e4bf3041395aab04660eeb37 7080 ssh_6.9p1-2ubuntu0.2_all.deb Checksums-Sha256: e1a19df8459d0915135f9eb393c646a89a1f9f985a01d4138cee41ab0d4ea692 1096504 openssh-client-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 239c796ded3c073f950928b5260a335a164f35b9f617ab21efae7a118184e61f 528188 openssh-client-udeb-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb a875f33af87baa75fd183993206cdb4492315709e8997dec2ebe81b68a0412a4 278838 openssh-client-udeb_6.9p1-2ubuntu0.2_amd64.udeb 56e38acef58b2f7eb921e414fb77d798cb0e3108d23cf2da6642a19900318a9f 604372 openssh-client_6.9p1-2ubuntu0.2_amd64.deb e632434044ea265f4a85cc1af88809d78ee4ca9f49baf344b1d5c166c84c0432 611042 openssh-server-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 594761608f83a4f6107ca9c70a472a8366f9149ace199c96d935059e37b2200c 588326 openssh-server-udeb-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 12c03bf0208675759e3738edfffef6eecd3d2e170308f1f8076baa8d97f2cd3f 294608 openssh-server-udeb_6.9p1-2ubuntu0.2_amd64.udeb cc5a06125f17130ad2f922960e59148385c580e8e5bb1e25a891cf7875066b11 348588 openssh-server_6.9p1-2ubuntu0.2_amd64.deb 69fe6319b6d208cdd9f021144bc79ca7c8ceb4a68adf7995b6057f9febcd49b7 74140 openssh-sftp-server-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb b33ad7263f99af8110d783db953cd9ad719640d07a59c00b9f9affef1b54d7df 38392 openssh-sftp-server_6.9p1-2ubuntu0.2_amd64.deb 55d180cad23338199b5f6e92fe80f3f9a12c99fdbf11adae0f2563dba3a0941c 8418 openssh_6.9p1-2ubuntu0.2_amd64_translations.tar.gz e7c329fd5f7b4d1b0d1908f3c51792486fe3eb9caa55e14a0270109f1edf0138 11564 ssh-askpass-gnome-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 43b83d031ffa918dbbdbb09cda8191e9575ab1d271519e45564741025ec27851 14474 ssh-askpass-gnome_6.9p1-2ubuntu0.2_amd64.deb 201ef08c716e7f8e3da42321e99ed0adeb6d627177009c55a32e54850b1b1237 7952 ssh-krb5_6.9p1-2ubuntu0.2_all.deb 218e09166a49b10c44ab0f880b0859e27c80bc9ff18ffd2948cf5936effc90b0 7080 ssh_6.9p1-2ubuntu0.2_all.deb Files: a88d2313b361f0c4f715d7fdecadde74 1096504 net extra openssh-client-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 48da6ddae515a0952f3f65b567f48307 528188 debian-installer extra openssh-client-udeb-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 90d5aed54eef78c54c0a392b051a33ac 278838 debian-installer optional openssh-client-udeb_6.9p1-2ubuntu0.2_amd64.udeb e5b29d142b7dceec3c6de326a69a2495 604372 net standard openssh-client_6.9p1-2ubuntu0.2_amd64.deb 18833dea4124c12e5bf3251379160d61 611042 net extra openssh-server-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 255693f7998ea73ddfa7c89b0e6ca0ca 588326 debian-installer extra openssh-server-udeb-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 1b1c785000bfc39e7d8d6afa32f79271 294608 debian-installer optional openssh-server-udeb_6.9p1-2ubuntu0.2_amd64.udeb 8386733a7ea743a47eefbeac7c4adef5 348588 net optional openssh-server_6.9p1-2ubuntu0.2_amd64.deb a7f7e7f67ae8c8ca8f0fbdd01219299a 74140 net extra openssh-sftp-server-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb d66148c5cadf82b1787ae95c32e16543 38392 net optional openssh-sftp-server_6.9p1-2ubuntu0.2_amd64.deb 06ba254c265a81098257336b568f4eb1 8418 raw-translations - openssh_6.9p1-2ubuntu0.2_amd64_translations.tar.gz 66f09f223a796c7e02833ee3282c6429 11564 gnome extra ssh-askpass-gnome-dbgsym_6.9p1-2ubuntu0.2_amd64.ddeb 8238db26412163f88b2c339fdfcfbdcf 14474 gnome optional ssh-askpass-gnome_6.9p1-2ubuntu0.2_amd64.deb fb4f1f6fee7eead406604155cfb56d6b 7952 oldlibs extra ssh-krb5_6.9p1-2ubuntu0.2_all.deb abfb87e879c76edbb9677770929d2e7e 7080 net extra ssh_6.9p1-2ubuntu0.2_all.deb Original-Maintainer: Debian OpenSSH Maintainers