Package "openssh-tests"

Name: openssh-tests


OpenSSH regression tests

Latest version: 1:8.2p1-4ubuntu0.9
Release: focal (20.04)
Level: updates
Repository: universe
Head package: openssh
Homepage: http://www.openssh.com/


Download "openssh-tests"

Other versions of "openssh-tests" in Focal

Repository Area Version
base universe 1:8.2p1-4
security universe 1:8.2p1-4ubuntu0.9


Version: 1:8.2p1-4ubuntu0.9 2023-08-09 08:07:01 UTC

  openssh (1:8.2p1-4ubuntu0.9) focal-security; urgency=medium

  * SECURITY UPDATE: information leak in algorithm negotiation (LP: #2030275)
    - debian/patches/CVE-2020-14145-mitigation.patch: tweak the client
      hostkey preference ordering algorithm in sshconnect2.c.
    - Note: This update does not solve CVE-2020-14145, but does mitigate
      the issue in the specific scenario where the user has a key that
      matches the best-preference default algorithm.

 -- Marc Deslauriers <email address hidden> Fri, 04 Aug 2023 18:02:08 -0400

Source diff to previous version
2030275 Include mitigation for CVE-2020-14145
CVE-2020-14145 The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man

Version: 1:8.2p1-4ubuntu0.8 2023-07-24 19:07:10 UTC

  openssh (1:8.2p1-4ubuntu0.8) focal-security; urgency=medium

  * SECURITY UPDATE: remote code execution relating to PKCS#11 providers
    - debian/patches/CVE-2023-38408-1.patch: terminate process if requested
      to load a PKCS#11 provider that isn't a PKCS#11 provider in
    - debian/patches/CVE-2023-38408-3.patch: ensure FIDO/PKCS11 libraries
      contain expected symbols in misc.c, misc.h, ssh-pkcs11.c, ssh-sk.c.
    - CVE-2023-38408

 -- Marc Deslauriers <email address hidden> Wed, 19 Jul 2023 15:56:59 -0400

Source diff to previous version
CVE-2023-38408 The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent

Version: 1:8.2p1-4ubuntu0.7 2023-05-10 17:07:15 UTC

  openssh (1:8.2p1-4ubuntu0.7) focal; urgency=medium

  * d/p/lp2012298-upstream-fix-match-in-d-config.patch: Allow ssh_config.d/
    configuration files to correctly update the PasswordAuthentication setting
    (LP: #2012298)

 -- Lena Voytek <email address hidden> Mon, 03 Apr 2023 15:47:13 -0700

Source diff to previous version
2012298 PasswordAuthenticaion in sshd_config.d

Version: 1:8.2p1-4ubuntu0.5 2022-05-12 08:06:19 UTC

  openssh (1:8.2p1-4ubuntu0.5) focal; urgency=medium

  * d/p/fix-connect-timeout-overflow.patch: prevent ConnectTimeout overflow.
    (LP: #1903516)

  [ Sergio Durigan Junior ]
  * d/p/lp1966591-upstream-preserve-group-world-read-permission-on-kno.patch:
    Preserve group/world read permissions on known_hosts. (LP: #1966591)

 -- Athos Ribeiro <email address hidden> Wed, 30 Mar 2022 10:03:15 -0300

Source diff to previous version
1903516 aborted (core dumped) when using ConnectTimeout \u003e 2147483
1966591 ssh-keygen -R changes known_hosts file permissions (mode)

Version: 1:8.2p1-4ubuntu0.4 2022-01-06 22:07:03 UTC

  openssh (1:8.2p1-4ubuntu0.4) focal; urgency=medium

  * d/p/match-host-certs-w-public-keys.patch: Add patch
    to match host certificates agianst host public keys.
    (LP: #1952421)

 -- Chloé S <email address hidden> Thu, 02 Dec 2021 22:38:52 +0000

1952421 Issue on sshd finds correct private key for a certificate when using ssh-agent

About   -   Send Feedback to @ubuntu_updates