Author: Ubuntu Git Importer
Author Date: 2020-01-17 08:58:19 UTC

DSC file for 0.9.3-2ubuntu1

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-unapplied version 0.9.3-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 42ef5d20b6e14200cc33408556249db8d6c0d3b1

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-applied version 0.9.3-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 9568c582c6e5181a55206ddabe8d1f2682626127
Unapplied parent: c8e0327f132526b3abd5f34ac721d75c62533fa3

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-unapplied version 0.9.3-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 42ef5d20b6e14200cc33408556249db8d6c0d3b1

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-applied version 0.9.3-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 9568c582c6e5181a55206ddabe8d1f2682626127
Unapplied parent: c8e0327f132526b3abd5f34ac721d75c62533fa3

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-unapplied version 0.9.3-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 42ef5d20b6e14200cc33408556249db8d6c0d3b1

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-applied version 0.9.3-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 9568c582c6e5181a55206ddabe8d1f2682626127
Unapplied parent: c8e0327f132526b3abd5f34ac721d75c62533fa3

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-unapplied version 0.9.3-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 42ef5d20b6e14200cc33408556249db8d6c0d3b1

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Sebastien Bacher
Author Date: 2020-01-17 09:47:29 UTC

Import patches-applied version 0.9.3-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 9568c582c6e5181a55206ddabe8d1f2682626127
Unapplied parent: c8e0327f132526b3abd5f34ac721d75c62533fa3

New changelog entries:
  * Resynchronize with Debian, remaining change
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Ubuntu Git Importer
Author Date: 2019-12-15 22:50:21 UTC

DSC file for 0.9.3-2

Author: Laurent Bigonville
Author Date: 2019-12-15 18:18:53 UTC

Import patches-applied version 0.9.3-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 08546b319c8a9afc24c3b866cdef5a4a9eee231a
Unapplied parent: 5fe621705a962d1b3bce8e9c81d524b36d2d155a

New changelog entries:
  * debian/rules: Rename libssh-gcrypt.a to libssh.a to ensure that the
    correct static library is installed in the libssh-gcrypt-dev package

Author: Laurent Bigonville
Author Date: 2019-12-15 18:18:53 UTC

Import patches-unapplied version 0.9.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9ba5f408273b99a6a8786c2e56623e30140e2636

New changelog entries:
  * debian/rules: Rename libssh-gcrypt.a to libssh.a to ensure that the
    correct static library is installed in the libssh-gcrypt-dev package

Author: Marc Deslauriers
Author Date: 2019-12-10 15:32:29 UTC

Import patches-unapplied version 0.6.3-4.3ubuntu0.5 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 946f27c6977a743429ecb518b536f2d79bf45a22

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:24:44 UTC

Import patches-unapplied version 0.9.0-1ubuntu1.3 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 1ab9655eed46335904aba3190b84ba831ce0b536

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: add tests for SCP client in
      tests/client/CMakeLists.txt, tests/client/torture_scp.c.
    - debian/patches/CVE-2019-14889-2.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-4.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-5.patch: add unit tests for
      ssh_quote_file_name() in tests/unittests/torture_misc.c.
    - debian/patches/CVE-2019-14889-6.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-7.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:28:34 UTC

Import patches-unapplied version 0.8.6-3ubuntu0.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 89b3b1d7a51f1c83f2395a8fc34028f47e2e2752

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:30:36 UTC

Import patches-unapplied version 0.8.0~20170825.94fa1e38-1ubuntu0.5 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 01c84e08787e2b939f976ff5ac21b95d9fee1e41

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:28:34 UTC

Import patches-applied version 0.8.6-3ubuntu0.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 692040c8d1cfdb8db9c891a21288ce37e08a26fa
Unapplied parent: 7435b34f6a077296894a3ff93bacb52b7f1b5336

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:32:29 UTC

Import patches-unapplied version 0.6.3-4.3ubuntu0.5 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 946f27c6977a743429ecb518b536f2d79bf45a22

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:30:36 UTC

Import patches-applied version 0.8.0~20170825.94fa1e38-1ubuntu0.5 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 98e566fe10438faa4e68a27520bb33c23eef26c3
Unapplied parent: dde2d17d1320218848ce25f8546c32075ba2b413

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:28:34 UTC

Import patches-unapplied version 0.8.6-3ubuntu0.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 89b3b1d7a51f1c83f2395a8fc34028f47e2e2752

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:32:29 UTC

Import patches-applied version 0.6.3-4.3ubuntu0.5 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: e735b9d387d268056a3bde2ddd1fbd9a18aebe61
Unapplied parent: 5142262b26fc6867e5fbd30f6255b73eeb3f15c9

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:32:29 UTC

Import patches-unapplied version 0.6.3-4.3ubuntu0.5 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 946f27c6977a743429ecb518b536f2d79bf45a22

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:32:29 UTC

Import patches-applied version 0.6.3-4.3ubuntu0.5 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: e735b9d387d268056a3bde2ddd1fbd9a18aebe61
Unapplied parent: 5142262b26fc6867e5fbd30f6255b73eeb3f15c9

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:32:29 UTC

Import patches-applied version 0.6.3-4.3ubuntu0.5 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: e735b9d387d268056a3bde2ddd1fbd9a18aebe61
Unapplied parent: 5142262b26fc6867e5fbd30f6255b73eeb3f15c9

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:28:34 UTC

Import patches-applied version 0.8.6-3ubuntu0.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 692040c8d1cfdb8db9c891a21288ce37e08a26fa
Unapplied parent: 7435b34f6a077296894a3ff93bacb52b7f1b5336

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:28:34 UTC

Import patches-applied version 0.8.6-3ubuntu0.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 692040c8d1cfdb8db9c891a21288ce37e08a26fa
Unapplied parent: 7435b34f6a077296894a3ff93bacb52b7f1b5336

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:24:44 UTC

Import patches-unapplied version 0.9.0-1ubuntu1.3 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 1ab9655eed46335904aba3190b84ba831ce0b536

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: add tests for SCP client in
      tests/client/CMakeLists.txt, tests/client/torture_scp.c.
    - debian/patches/CVE-2019-14889-2.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-4.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-5.patch: add unit tests for
      ssh_quote_file_name() in tests/unittests/torture_misc.c.
    - debian/patches/CVE-2019-14889-6.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-7.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:28:34 UTC

Import patches-unapplied version 0.8.6-3ubuntu0.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 89b3b1d7a51f1c83f2395a8fc34028f47e2e2752

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:24:44 UTC

Import patches-applied version 0.9.0-1ubuntu1.3 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: aca85042d300389fc9b853022cbbe5f05b653334
Unapplied parent: 89dd54367fd8cb833986b37a7dc8bef043e81893

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: add tests for SCP client in
      tests/client/CMakeLists.txt, tests/client/torture_scp.c.
    - debian/patches/CVE-2019-14889-2.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-4.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-5.patch: add unit tests for
      ssh_quote_file_name() in tests/unittests/torture_misc.c.
    - debian/patches/CVE-2019-14889-6.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-7.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:30:36 UTC

Import patches-unapplied version 0.8.0~20170825.94fa1e38-1ubuntu0.5 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 01c84e08787e2b939f976ff5ac21b95d9fee1e41

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:30:36 UTC

Import patches-unapplied version 0.8.0~20170825.94fa1e38-1ubuntu0.5 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 01c84e08787e2b939f976ff5ac21b95d9fee1e41

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:24:44 UTC

Import patches-applied version 0.9.0-1ubuntu1.3 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: aca85042d300389fc9b853022cbbe5f05b653334
Unapplied parent: 89dd54367fd8cb833986b37a7dc8bef043e81893

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: add tests for SCP client in
      tests/client/CMakeLists.txt, tests/client/torture_scp.c.
    - debian/patches/CVE-2019-14889-2.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-4.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-5.patch: add unit tests for
      ssh_quote_file_name() in tests/unittests/torture_misc.c.
    - debian/patches/CVE-2019-14889-6.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-7.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:30:36 UTC

Import patches-applied version 0.8.0~20170825.94fa1e38-1ubuntu0.5 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 98e566fe10438faa4e68a27520bb33c23eef26c3
Unapplied parent: dde2d17d1320218848ce25f8546c32075ba2b413

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:24:44 UTC

Import patches-unapplied version 0.9.0-1ubuntu1.3 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 1ab9655eed46335904aba3190b84ba831ce0b536

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: add tests for SCP client in
      tests/client/CMakeLists.txt, tests/client/torture_scp.c.
    - debian/patches/CVE-2019-14889-2.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-4.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-5.patch: add unit tests for
      ssh_quote_file_name() in tests/unittests/torture_misc.c.
    - debian/patches/CVE-2019-14889-6.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-7.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:24:44 UTC

Import patches-applied version 0.9.0-1ubuntu1.3 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: aca85042d300389fc9b853022cbbe5f05b653334
Unapplied parent: 89dd54367fd8cb833986b37a7dc8bef043e81893

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: add tests for SCP client in
      tests/client/CMakeLists.txt, tests/client/torture_scp.c.
    - debian/patches/CVE-2019-14889-2.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-4.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-5.patch: add unit tests for
      ssh_quote_file_name() in tests/unittests/torture_misc.c.
    - debian/patches/CVE-2019-14889-6.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-7.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Marc Deslauriers
Author Date: 2019-12-10 15:30:36 UTC

Import patches-applied version 0.8.0~20170825.94fa1e38-1ubuntu0.5 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 98e566fe10438faa4e68a27520bb33c23eef26c3
Unapplied parent: dde2d17d1320218848ce25f8546c32075ba2b413

New changelog entries:
  * SECURITY UPDATE: unsanitized location in scp could lead to unwanted
    command execution
    - debian/patches/CVE-2019-14889-1.patch: reformat code in scp/scp.c.
    - debian/patches/CVE-2019-14889-2.patch: log SCP warnings received from
      the server in src/scp.c.
    - debian/patches/CVE-2019-14889-3.patch: add function to quote file
      names in include/libssh/misc.h, src/misc.c.
    - debian/patches/CVE-2019-14889-4.patch: don't allow file path longer
      than 32kb in src/scp.c.
    - debian/patches/CVE-2019-14889-5.patch: quote location to be used on
      shell in src/scp.c.
    - CVE-2019-14889

Author: Steve Langasek
Author Date: 2019-10-08 20:31:16 UTC

Import patches-applied version 0.9.0-1ubuntu1 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 25e0a2683fb39d4db64bad1b5aa5b90392e8166f
Unapplied parent: b78d7d25bccd9bfa654bec738dc7a62e06817046

New changelog entries:
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Steve Langasek
Author Date: 2019-10-08 20:31:16 UTC

Import patches-applied version 0.9.0-1ubuntu1 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 25e0a2683fb39d4db64bad1b5aa5b90392e8166f
Unapplied parent: b78d7d25bccd9bfa654bec738dc7a62e06817046

New changelog entries:
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Steve Langasek
Author Date: 2019-10-08 20:31:16 UTC

Import patches-unapplied version 0.9.0-1ubuntu1 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: d43320f08a2a808a24d23394f0c413764547553b

New changelog entries:
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Steve Langasek
Author Date: 2019-10-08 20:31:16 UTC

Import patches-unapplied version 0.9.0-1ubuntu1 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: d43320f08a2a808a24d23394f0c413764547553b

New changelog entries:
  * Disable libnacl support, which has not gone through an MIR.
    LP: #1847346.

Author: Martin Pitt
Author Date: 2019-05-23 08:55:12 UTC

Import patches-unapplied version 0.8.7-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 89b3b1d7a51f1c83f2395a8fc34028f47e2e2752

New changelog entries:
  * New upstream bug fix release 0.8.7.
    This fixes various crashes, buffer overflows, and other bugs.
    Drop our three backported patches, they are included in this release
    now. For details, see
    https://git.libssh.org/projects/libssh.git/log/?h=stable-0.8
  * autopkgtest: Check ssh server under valgrind.
    This exposes a long-standing libssh bug with the curve25519-sha256 key
    exchange algorithm, causing an "incorrect signature" failure on 32 bit
    machines under valgrind. Add a hack to switch to a different algorithm,
    until this is properly investigated and reported.

Author: Martin Pitt
Author Date: 2019-05-23 08:55:12 UTC

Import patches-applied version 0.8.7-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 692040c8d1cfdb8db9c891a21288ce37e08a26fa
Unapplied parent: 621159779d14b1f8e392d0dc85873513f1ab9eec

New changelog entries:
  * New upstream bug fix release 0.8.7.
    This fixes various crashes, buffer overflows, and other bugs.
    Drop our three backported patches, they are included in this release
    now. For details, see
    https://git.libssh.org/projects/libssh.git/log/?h=stable-0.8
  * autopkgtest: Check ssh server under valgrind.
    This exposes a long-standing libssh bug with the curve25519-sha256 key
    exchange algorithm, causing an "incorrect signature" failure on 32 bit
    machines under valgrind. Add a hack to switch to a different algorithm,
    until this is properly investigated and reported.

Author: Salvatore Bonaccorso
Author Date: 2018-12-31 13:47:15 UTC

Import patches-applied version 0.7.3-2+deb9u2 to applied/debian/stretch

Imported using git-ubuntu import.

Changelog parent: a4cfc6bae72485cd29cb330477416290ca8f2897
Unapplied parent: 8cecfc5ba7a4264c814a33ba3a9335b2a33960bf

New changelog entries:
  * Non-maintainer upload.
  * Fix broken server-side keyboard-interactive authentication.
    Thanks to Martin Pitt (Closes: #913870)

Author: Salvatore Bonaccorso
Author Date: 2018-12-31 13:47:15 UTC

Import patches-unapplied version 0.7.3-2+deb9u2 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: d8c14d950a5e889d50d00fbad9f5969d8e7a37fa

New changelog entries:
  * Non-maintainer upload.
  * Fix broken server-side keyboard-interactive authentication.
    Thanks to Martin Pitt (Closes: #913870)

Author: Martin Pitt
Author Date: 2019-02-11 20:43:44 UTC

Import patches-unapplied version 0.8.6-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 6f0d5c7513b7e94b3a452c561d9cb662ba912f6b

New changelog entries:
  [ Laurent Bigonville ]
  * Add Built-Using field to track the version of nacl libssh has been
    statically linked against
  [ Martin Pitt ]
  * autopkgtest: Let the server fork after opening the socket and print its
    pid, to avoid a race between server and client. (Closes: #922073)
  * 0003-pki_signature_from_rsa_blob-NULL-check.patch: pki: NULL check
    pki_signature_from_rsa_blob result. Patch taken from upstream stable-0.8
    branch.

Author: Martin Pitt
Author Date: 2019-02-11 20:43:44 UTC

Import patches-applied version 0.8.6-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 5934663c84734f2e6f80c574f30bd1e1b0c58cba
Unapplied parent: 0e7a4fca4151ec7918bf220f09e132889c2b6ddf

New changelog entries:
  [ Laurent Bigonville ]
  * Add Built-Using field to track the version of nacl libssh has been
    statically linked against
  [ Martin Pitt ]
  * autopkgtest: Let the server fork after opening the socket and print its
    pid, to avoid a race between server and client. (Closes: #922073)
  * 0003-pki_signature_from_rsa_blob-NULL-check.patch: pki: NULL check
    pki_signature_from_rsa_blob result. Patch taken from upstream stable-0.8
    branch.

Author: Martin Pitt
Author Date: 2019-02-11 20:43:44 UTC

Import patches-applied version 0.8.6-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 5934663c84734f2e6f80c574f30bd1e1b0c58cba
Unapplied parent: 0e7a4fca4151ec7918bf220f09e132889c2b6ddf

New changelog entries:
  [ Laurent Bigonville ]
  * Add Built-Using field to track the version of nacl libssh has been
    statically linked against
  [ Martin Pitt ]
  * autopkgtest: Let the server fork after opening the socket and print its
    pid, to avoid a race between server and client. (Closes: #922073)
  * 0003-pki_signature_from_rsa_blob-NULL-check.patch: pki: NULL check
    pki_signature_from_rsa_blob result. Patch taken from upstream stable-0.8
    branch.

Author: Martin Pitt
Author Date: 2019-02-11 20:43:44 UTC

Import patches-unapplied version 0.8.6-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 6f0d5c7513b7e94b3a452c561d9cb662ba912f6b

New changelog entries:
  [ Laurent Bigonville ]
  * Add Built-Using field to track the version of nacl libssh has been
    statically linked against
  [ Martin Pitt ]
  * autopkgtest: Let the server fork after opening the socket and print its
    pid, to avoid a race between server and client. (Closes: #922073)
  * 0003-pki_signature_from_rsa_blob-NULL-check.patch: pki: NULL check
    pki_signature_from_rsa_blob result. Patch taken from upstream stable-0.8
    branch.

Author: Marc Deslauriers
Author Date: 2018-11-27 15:05:25 UTC

Import patches-unapplied version 0.6.1-0ubuntu3.5 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: a85d54d1194a58b8692b4e30ca0770b17485ddc2

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 14:59:21 UTC

Import patches-unapplied version 0.8.1-1ubuntu0.3 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 66f18b8b3ac98cb8b539408e049c848aaad03733

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 14:59:21 UTC

Import patches-unapplied version 0.8.1-1ubuntu0.3 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 66f18b8b3ac98cb8b539408e049c848aaad03733

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 15:05:25 UTC

Import patches-unapplied version 0.6.1-0ubuntu3.5 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: a85d54d1194a58b8692b4e30ca0770b17485ddc2

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 14:59:21 UTC

Import patches-applied version 0.8.1-1ubuntu0.3 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: ede53926c63ee48c783520101823c3e135f51ea7
Unapplied parent: 47e183bcb1b4322cf4d18fa1533269cb83790e5e

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 14:59:21 UTC

Import patches-applied version 0.8.1-1ubuntu0.3 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: ede53926c63ee48c783520101823c3e135f51ea7
Unapplied parent: 47e183bcb1b4322cf4d18fa1533269cb83790e5e

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 15:05:25 UTC

Import patches-applied version 0.6.1-0ubuntu3.5 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 4481169269d7d24d41eeac353a08fa02a3c7b157
Unapplied parent: d7a7d097a5f9bb73e5a3b987f2fc8a4a8b686e0f

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 14:59:21 UTC

Import patches-unapplied version 0.8.1-1ubuntu0.3 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 66f18b8b3ac98cb8b539408e049c848aaad03733

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 15:05:25 UTC

Import patches-applied version 0.6.1-0ubuntu3.5 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 4481169269d7d24d41eeac353a08fa02a3c7b157
Unapplied parent: d7a7d097a5f9bb73e5a3b987f2fc8a4a8b686e0f

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 15:05:25 UTC

Import patches-unapplied version 0.6.1-0ubuntu3.5 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: a85d54d1194a58b8692b4e30ca0770b17485ddc2

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 14:59:21 UTC

Import patches-applied version 0.8.1-1ubuntu0.3 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: ede53926c63ee48c783520101823c3e135f51ea7
Unapplied parent: 47e183bcb1b4322cf4d18fa1533269cb83790e5e

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Marc Deslauriers
Author Date: 2018-11-27 15:05:25 UTC

Import patches-applied version 0.6.1-0ubuntu3.5 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 4481169269d7d24d41eeac353a08fa02a3c7b157
Unapplied parent: d7a7d097a5f9bb73e5a3b987f2fc8a4a8b686e0f

New changelog entries:
  * SECURITY REGRESSION: fix multiple regressions (LP: #1805348)
    - debian/patches/CVE-2018-10933-regression.patch: set correct state
      after sending INFO_REQUEST in src/server.c.
    - debian/patches/CVE-2018-10933-regression2.patch: add missing break in
      src/packet.c.
    - debian/patches/CVE-2018-10933-regression3.patch: set correct state
      after sending GSSAPI_RESPONSE in src/gssapi.c.

Author: Martin Pitt
Author Date: 2018-10-24 08:20:23 UTC

Import patches-unapplied version 0.8.1-1ubuntu0.2 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 3ebca4a62317e2273d734e3517e844e11109dd50

New changelog entries:
  * Fix regressions with known_host parsing: ssh_session_is_known_server()
    sometimes fails with SSH_SERVER_FOUND_OTHER if known_hosts contains
    multiple key types for the target host. (LP: #1799665)
  * Also backport fixes for some related bugs:
    - Use all supported hostkey algorithms for negotiation
    - Honor more host key algorithms than the first one (ssh-ed25519)
    - Use the correct name for ECDSA keys for host key negotiation

Author: Martin Pitt
Author Date: 2018-10-24 08:20:23 UTC

Import patches-applied version 0.8.1-1ubuntu0.2 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 4cf3b14ca2c77244f45d29c687fe00391bdcf948
Unapplied parent: 782bccc500bdd7e3d320bd2da698c3bfd05beb31

New changelog entries:
  * Fix regressions with known_host parsing: ssh_session_is_known_server()
    sometimes fails with SSH_SERVER_FOUND_OTHER if known_hosts contains
    multiple key types for the target host. (LP: #1799665)
  * Also backport fixes for some related bugs:
    - Use all supported hostkey algorithms for negotiation
    - Honor more host key algorithms than the first one (ssh-ed25519)
    - Use the correct name for ECDSA keys for host key negotiation

Author: Laurent Bigonville
Author Date: 2018-08-14 07:43:56 UTC

Import patches-applied version 0.8.1-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 075f7dc63dc71f3c9067dc5d8914488ac2357508
Unapplied parent: bad92f49d6d1edde6ea659612a9238a12a535cca

New changelog entries:
  * New upstream version 0.8.1
    - Fix Version field in pkg-config file (Closes: #906049)
  * debian/*-dev.install: Install the libssh-config.cmake file
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust soname of the library

Author: Laurent Bigonville
Author Date: 2018-08-14 07:43:56 UTC

Import patches-unapplied version 0.8.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2250f6f2aa9bda1ed05ff850812c664d77c5c9d3

New changelog entries:
  * New upstream version 0.8.1
    - Fix Version field in pkg-config file (Closes: #906049)
  * debian/*-dev.install: Install the libssh-config.cmake file
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust soname of the library

Author: Ubuntu Git Importer
Author Date: 2018-03-31 00:38:59 UTC

pristine-tar data for libssh_0.8.0~20170825.94fa1e38.orig.tar.xz

Author: Ubuntu Git Importer
Author Date: 2018-03-31 00:24:41 UTC

pristine-tar data for libssh_0.8.0~20170825.94fa1e38.orig.tar.xz

Author: Dimitri John Ledkov
Author Date: 2018-02-07 11:35:23 UTC

Import patches-unapplied version 0.8.0~20170825.94fa1e38-1build1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 2cd769afb1102c4c87dfb97cd04d8c2c290d3caa

New changelog entries:
  * No change rebuild against openssl1.1.

Author: Dimitri John Ledkov
Author Date: 2018-02-07 11:35:23 UTC

Import patches-applied version 0.8.0~20170825.94fa1e38-1build1 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: f67a07355d7eb212fe7a33123c6eeeff90e2c920
Unapplied parent: 164024aaa972a4fcb2d5b060d484c7926adc6360

New changelog entries:
  * No change rebuild against openssl1.1.

Author: Dimitri John Ledkov
Author Date: 2018-02-07 11:35:23 UTC

Import patches-applied version 0.8.0~20170825.94fa1e38-1build1 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: f67a07355d7eb212fe7a33123c6eeeff90e2c920
Unapplied parent: 164024aaa972a4fcb2d5b060d484c7926adc6360

New changelog entries:
  * No change rebuild against openssl1.1.

Author: Dimitri John Ledkov
Author Date: 2018-02-07 11:35:23 UTC

Import patches-unapplied version 0.8.0~20170825.94fa1e38-1build1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 2cd769afb1102c4c87dfb97cd04d8c2c290d3caa

New changelog entries:
  * No change rebuild against openssl1.1.

Author: Laurent Bigonville
Author Date: 2017-07-03 13:29:04 UTC

Import patches-unapplied version 0.7.5-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2c59ae9e2357b8ce08bd3c0be9f71dc0d7b2a903

New changelog entries:
  * New upstream release.
  * debian/control: Bump Standards-Version to 4.0.0 (no further changes)
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust library soname to the new
    release

Author: Laurent Bigonville
Author Date: 2017-07-03 13:29:04 UTC

Import patches-unapplied version 0.7.5-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2c59ae9e2357b8ce08bd3c0be9f71dc0d7b2a903

New changelog entries:
  * New upstream release.
  * debian/control: Bump Standards-Version to 4.0.0 (no further changes)
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust library soname to the new
    release

Author: Laurent Bigonville
Author Date: 2017-07-03 13:29:04 UTC

Import patches-unapplied version 0.7.5-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2c59ae9e2357b8ce08bd3c0be9f71dc0d7b2a903

New changelog entries:
  * New upstream release.
  * debian/control: Bump Standards-Version to 4.0.0 (no further changes)
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust library soname to the new
    release

Author: Laurent Bigonville
Author Date: 2017-07-03 13:29:04 UTC

Import patches-applied version 0.7.5-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: d6121287b9ec55803b99e8c119a3a514673d02cc
Unapplied parent: 9d83b9a4f7029406409ea55fb82603bd3eab8d52

New changelog entries:
  * New upstream release.
  * debian/control: Bump Standards-Version to 4.0.0 (no further changes)
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust library soname to the new
    release

Author: Laurent Bigonville
Author Date: 2017-07-03 13:29:04 UTC

Import patches-applied version 0.7.5-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: d6121287b9ec55803b99e8c119a3a514673d02cc
Unapplied parent: 9d83b9a4f7029406409ea55fb82603bd3eab8d52

New changelog entries:
  * New upstream release.
  * debian/control: Bump Standards-Version to 4.0.0 (no further changes)
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust library soname to the new
    release

Author: Laurent Bigonville
Author Date: 2017-07-03 13:29:04 UTC

Import patches-applied version 0.7.5-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: d6121287b9ec55803b99e8c119a3a514673d02cc
Unapplied parent: 9d83b9a4f7029406409ea55fb82603bd3eab8d52

New changelog entries:
  * New upstream release.
  * debian/control: Bump Standards-Version to 4.0.0 (no further changes)
  * debian/libssh-gcrypt-4.lintian-overrides: Adjust library soname to the new
    release

Author: Laurent Bigonville
Author Date: 2016-11-29 14:58:36 UTC

Import patches-applied version 0.7.3-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: eeb5b26521e38ef940371d9f2897300e6af25986
Unapplied parent: 6b52fec632f8266e816c36482aae0436c8145773

New changelog entries:
  * debian/control: Explicitly build against openssl1.0 for now as libssh
    doesn't support 1.1 yet (Closes: #828413, #845197)
  * debian/copyright: Fix short licence for files in the public domain.
  * debian/copyright: More fixes to the copyright file
  * debian/rules: Enable all hardening flags

Author: Laurent Bigonville
Author Date: 2016-11-29 14:58:36 UTC

Import patches-unapplied version 0.7.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 433a9ef4c961bb5b24af9b872fd8bb66b8793b51

New changelog entries:
  * debian/control: Explicitly build against openssl1.0 for now as libssh
    doesn't support 1.1 yet (Closes: #828413, #845197)
  * debian/copyright: Fix short licence for files in the public domain.
  * debian/copyright: More fixes to the copyright file
  * debian/rules: Enable all hardening flags

Author: Laurent Bigonville
Author Date: 2016-11-29 14:58:36 UTC

Import patches-unapplied version 0.7.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 433a9ef4c961bb5b24af9b872fd8bb66b8793b51

New changelog entries:
  * debian/control: Explicitly build against openssl1.0 for now as libssh
    doesn't support 1.1 yet (Closes: #828413, #845197)
  * debian/copyright: Fix short licence for files in the public domain.
  * debian/copyright: More fixes to the copyright file
  * debian/rules: Enable all hardening flags

Author: Laurent Bigonville
Author Date: 2016-11-29 14:58:36 UTC

Import patches-unapplied version 0.7.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 433a9ef4c961bb5b24af9b872fd8bb66b8793b51

New changelog entries:
  * debian/control: Explicitly build against openssl1.0 for now as libssh
    doesn't support 1.1 yet (Closes: #828413, #845197)
  * debian/copyright: Fix short licence for files in the public domain.
  * debian/copyright: More fixes to the copyright file
  * debian/rules: Enable all hardening flags

Author: Laurent Bigonville
Author Date: 2016-11-29 14:58:36 UTC

Import patches-applied version 0.7.3-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: eeb5b26521e38ef940371d9f2897300e6af25986
Unapplied parent: 6b52fec632f8266e816c36482aae0436c8145773

New changelog entries:
  * debian/control: Explicitly build against openssl1.0 for now as libssh
    doesn't support 1.1 yet (Closes: #828413, #845197)
  * debian/copyright: Fix short licence for files in the public domain.
  * debian/copyright: More fixes to the copyright file
  * debian/rules: Enable all hardening flags

Author: Laurent Bigonville
Author Date: 2016-11-29 14:58:36 UTC

Import patches-applied version 0.7.3-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: eeb5b26521e38ef940371d9f2897300e6af25986
Unapplied parent: 6b52fec632f8266e816c36482aae0436c8145773

New changelog entries:
  * debian/control: Explicitly build against openssl1.0 for now as libssh
    doesn't support 1.1 yet (Closes: #828413, #845197)
  * debian/copyright: Fix short licence for files in the public domain.
  * debian/copyright: More fixes to the copyright file
  * debian/rules: Enable all hardening flags

Author: Laurent Bigonville
Author Date: 2016-06-09 22:27:07 UTC

Import patches-applied version 0.7.3-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 9ce9db388dbe85cc66987b35ee7e5a4c88256cc8
Unapplied parent: 6adafb72051982ff857e80fb1f5506e254a6f903

New changelog entries:
  * New upstream release. (Closes: #805030)
    - debian/control: Bump build-dependencies
    - Update the .symbols files, add the new exported symbols
    - Drop 0001_CVE-2014-8132.patch, 0002_CVE-2015-3146.patch,
      0003_CVE-2016-0739.patch: Applied upstream
    - 1003-custom-lib-names.patch, 2003-disable-expand_tilde_unix-test.patch:
      Refreshed
    - Drop 2002-fix-html-doc-generation.patch, gcc-5.diff: Not needed anymore
  * Drop -dbg package and rely on the automatically built -dbgsym ones
  * debian/control: Bump Standards-Version to 3.9.8 (no further changes)
  * debian/control: Use https URL's for Vcs-* and Homepage fields
  * debian/copyright: Updated

Author: Laurent Bigonville
Author Date: 2016-06-09 22:27:07 UTC

Import patches-applied version 0.7.3-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 9ce9db388dbe85cc66987b35ee7e5a4c88256cc8
Unapplied parent: 6adafb72051982ff857e80fb1f5506e254a6f903

New changelog entries:
  * New upstream release. (Closes: #805030)
    - debian/control: Bump build-dependencies
    - Update the .symbols files, add the new exported symbols
    - Drop 0001_CVE-2014-8132.patch, 0002_CVE-2015-3146.patch,
      0003_CVE-2016-0739.patch: Applied upstream
    - 1003-custom-lib-names.patch, 2003-disable-expand_tilde_unix-test.patch:
      Refreshed
    - Drop 2002-fix-html-doc-generation.patch, gcc-5.diff: Not needed anymore
  * Drop -dbg package and rely on the automatically built -dbgsym ones
  * debian/control: Bump Standards-Version to 3.9.8 (no further changes)
  * debian/control: Use https URL's for Vcs-* and Homepage fields
  * debian/copyright: Updated

Author: Laurent Bigonville
Author Date: 2016-06-09 22:27:07 UTC

Import patches-applied version 0.7.3-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 9ce9db388dbe85cc66987b35ee7e5a4c88256cc8
Unapplied parent: 6adafb72051982ff857e80fb1f5506e254a6f903

New changelog entries:
  * New upstream release. (Closes: #805030)
    - debian/control: Bump build-dependencies
    - Update the .symbols files, add the new exported symbols
    - Drop 0001_CVE-2014-8132.patch, 0002_CVE-2015-3146.patch,
      0003_CVE-2016-0739.patch: Applied upstream
    - 1003-custom-lib-names.patch, 2003-disable-expand_tilde_unix-test.patch:
      Refreshed
    - Drop 2002-fix-html-doc-generation.patch, gcc-5.diff: Not needed anymore
  * Drop -dbg package and rely on the automatically built -dbgsym ones
  * debian/control: Bump Standards-Version to 3.9.8 (no further changes)
  * debian/control: Use https URL's for Vcs-* and Homepage fields
  * debian/copyright: Updated

Author: Laurent Bigonville
Author Date: 2016-06-09 22:27:07 UTC

Import patches-unapplied version 0.7.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3edff6c596e773b6c40bc46191e15f9962db55db

New changelog entries:
  * New upstream release. (Closes: #805030)
    - debian/control: Bump build-dependencies
    - Update the .symbols files, add the new exported symbols
    - Drop 0001_CVE-2014-8132.patch, 0002_CVE-2015-3146.patch,
      0003_CVE-2016-0739.patch: Applied upstream
    - 1003-custom-lib-names.patch, 2003-disable-expand_tilde_unix-test.patch:
      Refreshed
    - Drop 2002-fix-html-doc-generation.patch, gcc-5.diff: Not needed anymore
  * Drop -dbg package and rely on the automatically built -dbgsym ones
  * debian/control: Bump Standards-Version to 3.9.8 (no further changes)
  * debian/control: Use https URL's for Vcs-* and Homepage fields
  * debian/copyright: Updated

Author: Laurent Bigonville
Author Date: 2016-06-09 22:27:07 UTC

Import patches-unapplied version 0.7.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3edff6c596e773b6c40bc46191e15f9962db55db

New changelog entries:
  * New upstream release. (Closes: #805030)
    - debian/control: Bump build-dependencies
    - Update the .symbols files, add the new exported symbols
    - Drop 0001_CVE-2014-8132.patch, 0002_CVE-2015-3146.patch,
      0003_CVE-2016-0739.patch: Applied upstream
    - 1003-custom-lib-names.patch, 2003-disable-expand_tilde_unix-test.patch:
      Refreshed
    - Drop 2002-fix-html-doc-generation.patch, gcc-5.diff: Not needed anymore
  * Drop -dbg package and rely on the automatically built -dbgsym ones
  * debian/control: Bump Standards-Version to 3.9.8 (no further changes)
  * debian/control: Use https URL's for Vcs-* and Homepage fields
  * debian/copyright: Updated

Author: Laurent Bigonville
Author Date: 2016-06-09 22:27:07 UTC

Import patches-unapplied version 0.7.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3edff6c596e773b6c40bc46191e15f9962db55db

New changelog entries:
  * New upstream release. (Closes: #805030)
    - debian/control: Bump build-dependencies
    - Update the .symbols files, add the new exported symbols
    - Drop 0001_CVE-2014-8132.patch, 0002_CVE-2015-3146.patch,
      0003_CVE-2016-0739.patch: Applied upstream
    - 1003-custom-lib-names.patch, 2003-disable-expand_tilde_unix-test.patch:
      Refreshed
    - Drop 2002-fix-html-doc-generation.patch, gcc-5.diff: Not needed anymore
  * Drop -dbg package and rely on the automatically built -dbgsym ones
  * debian/control: Bump Standards-Version to 3.9.8 (no further changes)
  * debian/control: Use https URL's for Vcs-* and Homepage fields
  * debian/copyright: Updated

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 15:23:48 UTC

Import patches-unapplied version 0.5.4-1+deb7u3 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 234b5d37e8428fe92736f2327ee6e556f5581c79

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)
  * Non-maintainer upload.
  * debian/patches:
    - Add 0005-security-fix-for-vulnerability-CVE-2014-8132.patch
      Fix "Double free on dangling pointers in initial key exchange packet"
      (Closes: #773577, CVE-2014-8132)
    - Add 0006-security-fix-for-vulnerability-CVE-2015-3146.patch
      Fix "null pointer dereference due to a logical error in the handling of
      a SSH_MSG_NEWKEYS and KEXDH_REPLY packets"
      (Closes: #784404, CVE-2015-3146)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 15:23:48 UTC

Import patches-applied version 0.5.4-1+deb7u3 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 236eea5053e97fbdeef8df3e12f4a51d16c2cf6e
Unapplied parent: 4cab6d48292990e2585ecc0fdad0df4caafc80b9

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)
  * Non-maintainer upload.
  * debian/patches:
    - Add 0005-security-fix-for-vulnerability-CVE-2014-8132.patch
      Fix "Double free on dangling pointers in initial key exchange packet"
      (Closes: #773577, CVE-2014-8132)
    - Add 0006-security-fix-for-vulnerability-CVE-2015-3146.patch
      Fix "null pointer dereference due to a logical error in the handling of
      a SSH_MSG_NEWKEYS and KEXDH_REPLY packets"
      (Closes: #784404, CVE-2015-3146)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 15:00:29 UTC

Import patches-applied version 0.6.3-4+deb8u2 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: e4ac22789fee3eaaf08eb9bb4730428d9e147cb7
Unapplied parent: 1f2d720351528a9688a570293ff94a839a1dcfd1

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 15:00:29 UTC

Import patches-unapplied version 0.6.3-4+deb8u2 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 12f769e1bbdf9048d7d4c1b164ed0960f9de5905

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 18:54:04 UTC

Import patches-applied version 0.6.3-4.3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 01a6fe75ff068cd41f05b0fee4142209d819ef99
Unapplied parent: 1ae83472c4c2878d92e21f9f0d58ee3a470ab96d

New changelog entries:
  * Non-maintainer upload.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 18:54:04 UTC

Import patches-applied version 0.6.3-4.3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 01a6fe75ff068cd41f05b0fee4142209d819ef99
Unapplied parent: 1ae83472c4c2878d92e21f9f0d58ee3a470ab96d

New changelog entries:
  * Non-maintainer upload.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 18:54:04 UTC

Import patches-unapplied version 0.6.3-4.3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 37ec3e2887be0890823f30fb1ce8bf82300a13a9

New changelog entries:
  * Non-maintainer upload.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)

Author: Salvatore Bonaccorso
Author Date: 2016-02-23 18:54:04 UTC

Import patches-unapplied version 0.6.3-4.3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 37ec3e2887be0890823f30fb1ce8bf82300a13a9

New changelog entries:
  * Non-maintainer upload.
  * CVE-2016-0739: Truncated Diffie-Hellman secret length (Closes: #815663)

Author: Marc Deslauriers
Author Date: 2016-02-23 12:36:38 UTC

Import patches-applied version 0.5.2-1ubuntu0.12.04.6 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 05aa545294b32256e7145efc574d0388ef450c0b
Unapplied parent: 3b23acd9fe41f497f21d3b49b25f0748a277febc

New changelog entries:
  * SECURITY UPDATE: denial of service via incorrect SSH_MSG_NEWKEYS and
    KEXDH_REPLY packet handling
    - debian/patches/CVE-2015-3146.patch: fix state validation in
      src/client.c, src/server.c, src/buffer.c.
    - CVE-2015-3146
  * SECURITY UPDATE: weakness in diffie-hellman secret key generation
    - debian/patches/CVE-2016-0739.patch: fix bits/bytes confusion bug in
      src/dh.c.
    - CVE-2016-0739

Author: Marc Deslauriers
Author Date: 2016-02-23 12:36:38 UTC

Import patches-applied version 0.5.2-1ubuntu0.12.04.6 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 05aa545294b32256e7145efc574d0388ef450c0b
Unapplied parent: 3b23acd9fe41f497f21d3b49b25f0748a277febc

New changelog entries:
  * SECURITY UPDATE: denial of service via incorrect SSH_MSG_NEWKEYS and
    KEXDH_REPLY packet handling
    - debian/patches/CVE-2015-3146.patch: fix state validation in
      src/client.c, src/server.c, src/buffer.c.
    - CVE-2015-3146
  * SECURITY UPDATE: weakness in diffie-hellman secret key generation
    - debian/patches/CVE-2016-0739.patch: fix bits/bytes confusion bug in
      src/dh.c.
    - CVE-2016-0739

Author: Marc Deslauriers
Author Date: 2016-02-23 12:36:38 UTC

Import patches-applied version 0.5.2-1ubuntu0.12.04.6 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 05aa545294b32256e7145efc574d0388ef450c0b
Unapplied parent: 3b23acd9fe41f497f21d3b49b25f0748a277febc

New changelog entries:
  * SECURITY UPDATE: denial of service via incorrect SSH_MSG_NEWKEYS and
    KEXDH_REPLY packet handling
    - debian/patches/CVE-2015-3146.patch: fix state validation in
      src/client.c, src/server.c, src/buffer.c.
    - CVE-2015-3146
  * SECURITY UPDATE: weakness in diffie-hellman secret key generation
    - debian/patches/CVE-2016-0739.patch: fix bits/bytes confusion bug in
      src/dh.c.
    - CVE-2016-0739

Author: Marc Deslauriers
Author Date: 2016-02-23 12:31:01 UTC

Import patches-applied version 0.6.3-3ubuntu3.2 to applied/ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: 0e5086fbe0659f77acb4cec0ea78c04e8ce556ea
Unapplied parent: e84242bb24ed1ce88d06e9f2877738edf2932332

New changelog entries:
  * SECURITY UPDATE: denial of service via incorrect SSH_MSG_NEWKEYS and
    KEXDH_REPLY packet handling
    - debian/patches/CVE-2015-3146.patch: fix state validation in
      src/packet_cb.c, src/server.c, src/buffer.c.
    - CVE-2015-3146
  * SECURITY UPDATE: weakness in diffie-hellman secret key generation
    - debian/patches/CVE-2016-0739.patch: fix bits/bytes confusion bug in
      src/dh.c.
    - CVE-2016-0739