UbuntuUpdates.org

Package "google-guest-agent"

Name: google-guest-agent

Description:

Google Compute Engine Guest Agent
Latest version: 20250116.00-0ubuntu1~22.04.1
Release: jammy (22.04)
Level: security
Repository: main
Homepage: https://github.com/GoogleCloudPlatform/guest-agent

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "google-guest-agent"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "google-guest-agent" in Jammy

Repository Area Version
base main 20220104.00-0ubuntu2
updates main 20250116.00-0ubuntu1~22.04.1

Changelog

Version: 20250116.00-0ubuntu1~22.04.1 2025-11-03 13:07:13 UTC

  google-guest-agent (20250116.00-0ubuntu1~22.04.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Authorization bypass in SSH protocol
    - debian/extra/vendor/golang.org/x/crypto/ssh/server.go: Change
      maxCachedPubKeys to 1 and change limit checks. Based on:
      https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909
    - CVE-2024-45337

 -- Hlib Korzhynskyy <email address hidden> Thu, 23 Oct 2025 15:25:07 -0230
Source diff to previous version
CVE-2024-45337 Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an au

Version: 20231004.02-0ubuntu1~22.04.5 2024-07-10 08:07:06 UTC

  google-guest-agent (20231004.02-0ubuntu1~22.04.5) jammy-security; urgency=medium

  * No change rebuild due to golang-1.21 update

 -- Nishit Majithia <email address hidden> Wed, 10 Jul 2024 09:42:57 +0530
Source diff to previous version

Version: 20231004.02-0ubuntu1~22.04.4 2024-04-23 13:06:58 UTC

  google-guest-agent (20231004.02-0ubuntu1~22.04.4) jammy-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/extra/vendor/googgle.golang.org/protobuf was
      patched with a backport of f01a588e5810b90996452eec4a28f22a0afae023
      in files encoding/protojson/well_known_types.go,
      internal/encoding/json/decode.go.
    - debian/extra/vendor adding patches-applied and README.txt for
      track/documentation propose about patches applied in vendored sources.
    - CVE-2024-24786

 -- Leonidas Da Silva Barbosa <email address hidden> Thu, 14 Mar 2024 07:08:12 -0300
Source diff to previous version
CVE-2024-24786 The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshali

Version: 20231004.02-0ubuntu1~22.04.3 2024-01-30 17:08:24 UTC

  google-guest-agent (20231004.02-0ubuntu1~22.04.3) jammy-security; urgency=medium

  * d/control: Add a dependency on `google-compute-engine-oslogin`
    (LP: #2050956)

 -- Chloé 'kajiya' Smith <email address hidden> Sat, 27 Jan 2024 01:05:12 +0000
Source diff to previous version
2050956 [SRU] Update d/control file with dependencies

Version: 20231004.02-0ubuntu1~22.04.2 2024-01-18 09:06:54 UTC

  google-guest-agent (20231004.02-0ubuntu1~22.04.2) jammy-security; urgency=medium

  * No change rebuild due to golang-1.20, golang-1.21 updates

 -- Nishit Majithia <email address hidden> Thu, 18 Jan 2024 10:10:54 +0530


About   -   Send Feedback to @ubuntu_updates