Ubuntu
openssh package

~ahasenack/ubuntu/+source/openssh:jammy-openssh-cve-2023-38408

  1. Git
  2. lp:~ahasenack/ubuntu/+source/openssh
  3. jammy-openssh-cve-2023-38408
Last commit made on 2023-07-19
Get this branch:
git clone -b jammy-openssh-cve-2023-38408 https://git.launchpad.net/~ahasenack/ubuntu/+source/openssh
Only Andreas Hasenack can upload to this branch. If you are Andreas Hasenack please log in for upload directions.

Branch merges

Branch information

Name:
jammy-openssh-cve-2023-38408
Repository:
lp:~ahasenack/ubuntu/+source/openssh

Recent commits

73606ac... by Andreas Hasenack

changelog

a1334e2... by Andreas Hasenack

  * SECURITY UPDATE: remote code execution relating to PKCS#11 providers
    - debian/patches/CVE-2023-38408-1.patch: terminate process if requested
      to load a PKCS#11 provider in ssh-pkcs11.c.
    - debian/patches/CVE-2023-38408-2.patch: disallow remote addition of
      FIDO/PKCS11 provider in ssh-agent.1, ssh-agent.c.
    - debian/patches/CVE-2023-38408-3.patch: ensure FIDO/PKCS11 libraries
      contain expected symbols in misc.c, misc.h, ssh-pkcs11.c, ssh-sk.c.
    - debian/patches/CVE-2023-38408-4.patch: separate ssh-pkcs11-helpers
      for each p11 module in ssh-pkcs11-client.c.
    - CVE-2023-38408

0d1dd76... by Bryce Harrington

update-maintainer

782dec3... by Bryce Harrington

changelog

6b01f86... by Bryce Harrington

  * d/p/fix-poll-spin.patch: Fix poll(2) spin when a channel's output
    fd closes without data in the channel buffer.
    (LP: #1986521)

7439640... by Colin Watson

1:8.9p1-3 (patches unapplied)

Imported using git-ubuntu import.

4d9c6fa... by Colin Watson

1:8.9p1-2 (patches unapplied)

Imported using git-ubuntu import.

024b4fc... by Colin Watson

1:8.9p1-1 (patches unapplied)

Imported using git-ubuntu import.

d116b0c... by Colin Watson

1:8.8p1-1 (patches unapplied)

Imported using git-ubuntu import.

dede9d9... by Colin Watson

1:8.7p1-4 (patches unapplied)

Imported using git-ubuntu import.