bad bignum encoding for curve25519-sha256 at libssh.org
Bug #1310781 reported by
Colin Watson
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openssh (Ubuntu) |
Fix Released
|
High
|
Colin Watson | ||
Trusty |
Fix Released
|
High
|
Colin Watson |
Bug Description
[Impact] Occasional key exchange failure with ED25519.
[Test Case] I don't have a clear one, but perhaps attempting lots of connections to a fixed server would do it.
[Regression Potential] We should test with an unpatched server to make sure that it properly falls back to skipping that key exchange method.
There's an occasional (one in 512 or so) key exchange failure in the curve25519-sha256 key exchange method, which affects OpenSSH 6.5 and 6.6. Upstream gives more details here and has recommended that distributors apply this patch:
https:/
We should issue this as an update for trusty.
Changed in openssh (Ubuntu): | |
status: | New → Triaged |
importance: | Undecided → High |
assignee: | nobody → Colin Watson (cjwatson) |
description: | updated |
tags: |
added: verification-done removed: verification-needed |
To post a comment you must log in.
openssh (1:6.6p1-4) unstable; urgency=medium
* Debconf translations: recommended patch to fix bignum encoding for
- Spanish (thanks, Matías Bellone; closes: #744867).
* Apply upstream-
<email address hidden>, fixing occasional key exchange failures.
-- Colin Watson <email address hidden> Mon, 21 Apr 2014 21:29:53 +0100