Format: 1.8 Date: Thu, 31 Jan 2019 08:58:34 -0500 Source: openssh Binary: openssh-client openssh-server openssh-sftp-server ssh ssh-askpass-gnome openssh-client-udeb openssh-server-udeb Architecture: s390x s390x_translations Version: 1:7.6p1-4ubuntu0.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: openssh-client - secure shell (SSH) client, for secure access to remote machines openssh-client-udeb - secure shell client for the Debian installer (udeb) openssh-server - secure shell (SSH) server, for secure access from remote machines openssh-server-udeb - secure shell server for the Debian installer (udeb) openssh-sftp-server - secure shell (SSH) sftp server module, for SFTP access from remot ssh - secure shell client and server (metapackage) ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad Changes: openssh (1:7.6p1-4ubuntu0.2) bionic-security; urgency=medium . * SECURITY UPDATE: access restrictions bypass in scp - debian/patches/CVE-2018-20685.patch: disallow empty filenames or ones that refer to the current directory in scp.c. - CVE-2018-20685 * SECURITY UPDATE: scp client spoofing via object name - debian/patches/CVE-2019-6109.patch: make sure the filenames match the wildcard specified by the user, and add new flag to relax the new restrictions in scp.c, scp.1. - CVE-2019-6109 * SECURITY UPDATE: scp client missing received object name validation - debian/patches/CVE-2019-6111-1.patch: sanitize scp filenames via snmprintf in atomicio.c, progressmeter.c, progressmeter.h, scp.c, sftp-client.c. - debian/patches/CVE-2019-6111-2.patch: force progressmeter updates in progressmeter.c, progressmeter.h, scp.c, sftp-client.c. - CVE-2019-6111 Checksums-Sha1: b4252ac1ee58103819154a10ebfca792975d9539 3158784 openssh-client-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb 20169a1f49ce6cfebe34d8bf1e93a4a26caf776e 268976 openssh-client-udeb_7.6p1-4ubuntu0.2_s390x.udeb bbcf9d130093866c42788ee22053253b02c52524 574016 openssh-client_7.6p1-4ubuntu0.2_s390x.deb 6607ce4cbf4556074f3d1559cffa8fe76cabe76a 907112 openssh-server-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb e3ae4a208e9b33ba5fe69b749c1070bb8fdd9177 273120 openssh-server-udeb_7.6p1-4ubuntu0.2_s390x.udeb 72f9f1ce31ac6c1343ffc0999543eef3f16d6437 311208 openssh-server_7.6p1-4ubuntu0.2_s390x.deb b9c02923211ca2e5d5d3d8555a7adecd28fd98f5 126112 openssh-sftp-server-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb ba2fd256e983ae42ea885754fd88601991c81e96 42724 openssh-sftp-server_7.6p1-4ubuntu0.2_s390x.deb bf6a718e7c30e53382c0253f0d13b0e94887ae32 16761 openssh_7.6p1-4ubuntu0.2_s390x.buildinfo c627e9cffb2e75b3cbd8427fbe9195d8128e7d77 8545 openssh_7.6p1-4ubuntu0.2_s390x_translations.tar.gz dbb4d3841b60f2a56e7c6754ea2ff79efd66032e 11616 ssh-askpass-gnome-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb e377a149aebe939dd932f64f840e72db90e7750b 17212 ssh-askpass-gnome_7.6p1-4ubuntu0.2_s390x.deb Checksums-Sha256: 785b0207aa34e3d339440f4ad68844dcde22e5943e51c3911bcda724f47e43a1 3158784 openssh-client-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb 88c941659e5195bda79d39648fcf0fa376b8a8498f41eec5b19133cd427e18fb 268976 openssh-client-udeb_7.6p1-4ubuntu0.2_s390x.udeb 82caac346c59b819695a3d7444d45d6fec4ec493d9d338c051257d82ccf9f0db 574016 openssh-client_7.6p1-4ubuntu0.2_s390x.deb d324929ee93a794b1f61bdddc0bf3b76f9077fad55d65ec247b6a4b94fb9c2da 907112 openssh-server-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb ae5dc6570667b1f01dd8ad936dbb207281d2eb6dbbd85cf27008b9db2569f837 273120 openssh-server-udeb_7.6p1-4ubuntu0.2_s390x.udeb aef71d912349dc34ec6d0b2dedfb28969ab9f0a68aaa42ca7b3c883e961870b6 311208 openssh-server_7.6p1-4ubuntu0.2_s390x.deb dfadc96e687ea7c9443bce569562f937b8a2aaf5d274ce9273e78e0f8902579b 126112 openssh-sftp-server-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb c79b3fa87c340846c074e44f0eb829ca4e634048f5df33911bc808deb711dad9 42724 openssh-sftp-server_7.6p1-4ubuntu0.2_s390x.deb ec189f7d2ec2e8a7e649398e091260b38d18fd3343a7bc48fd7b6396380a40a1 16761 openssh_7.6p1-4ubuntu0.2_s390x.buildinfo 4b6544a7fab3625ef2cb3280dcbe8ff039fff585565fd2e4558f5dc80ebe2c6a 8545 openssh_7.6p1-4ubuntu0.2_s390x_translations.tar.gz c08d11db28bef5d69e096dfba4212de381a426f6c4db1ba8132274bd59c279ca 11616 ssh-askpass-gnome-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb f26ab0680b03a3e8910f89eed657b41485be2e87bca6a7730dfa1f1062115a51 17212 ssh-askpass-gnome_7.6p1-4ubuntu0.2_s390x.deb Files: 81ca74b891dcf5ed7a387c1d5f881d4b 3158784 debug optional openssh-client-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb 4b0918c12fda5cd152252d29e7c75a4c 268976 debian-installer optional openssh-client-udeb_7.6p1-4ubuntu0.2_s390x.udeb cf05dd8c09334703297e64068f3c57b0 574016 net standard openssh-client_7.6p1-4ubuntu0.2_s390x.deb 637832ddad23e94f8ca947f281f617a5 907112 debug optional openssh-server-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb ab8f4436fb662de40f99691a890871c5 273120 debian-installer optional openssh-server-udeb_7.6p1-4ubuntu0.2_s390x.udeb 38c9fa4fb87b79a8182490fbb593c723 311208 net optional openssh-server_7.6p1-4ubuntu0.2_s390x.deb 052c5bd66611491d3d077cff276f043c 126112 debug optional openssh-sftp-server-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb 98942a544776a5959b3f20043fadd3d6 42724 net optional openssh-sftp-server_7.6p1-4ubuntu0.2_s390x.deb 227954c1398e8bf6b7ae5ae51db7fdc9 16761 net standard openssh_7.6p1-4ubuntu0.2_s390x.buildinfo c263c86909741affceb62d9cda5f6858 8545 raw-translations - openssh_7.6p1-4ubuntu0.2_s390x_translations.tar.gz b956363eb69a11fc667e055d41ec4d10 11616 debug optional ssh-askpass-gnome-dbgsym_7.6p1-4ubuntu0.2_s390x.ddeb 54b556f8fea509a15e82b1dcb4f5e6d8 17212 gnome optional ssh-askpass-gnome_7.6p1-4ubuntu0.2_s390x.deb Original-Maintainer: Debian OpenSSH Maintainers