UbuntuUpdates.org

Package "ssh"

Name: ssh

Description:

secure shell client and server (metapackage)

Latest version: 1:8.2p1-4ubuntu0.11
Release: focal (20.04)
Level: updates
Repository: main
Head package: openssh
Homepage: http://www.openssh.com/

Links


Download "ssh"


Other versions of "ssh" in Focal

Repository Area Version
base main 1:8.2p1-4
security main 1:8.2p1-4ubuntu0.11

Changelog

Version: 1:8.2p1-4ubuntu0.5 2022-05-12 03:06:22 UTC

  openssh (1:8.2p1-4ubuntu0.5) focal; urgency=medium

  * d/p/fix-connect-timeout-overflow.patch: prevent ConnectTimeout overflow.
    (LP: #1903516)

  [ Sergio Durigan Junior ]
  * d/p/lp1966591-upstream-preserve-group-world-read-permission-on-kno.patch:
    Preserve group/world read permissions on known_hosts. (LP: #1966591)

 -- Athos Ribeiro <email address hidden> Wed, 30 Mar 2022 10:03:15 -0300

Source diff to previous version
1903516 aborted (core dumped) when using ConnectTimeout \u003e 2147483
1966591 ssh-keygen -R changes known_hosts file permissions (mode)

Version: 1:8.2p1-4ubuntu0.4 2022-01-06 22:07:01 UTC

  openssh (1:8.2p1-4ubuntu0.4) focal; urgency=medium

  * d/p/match-host-certs-w-public-keys.patch: Add patch
    to match host certificates agianst host public keys.
    (LP: #1952421)

 -- ChloĆ© S <email address hidden> Thu, 02 Dec 2021 22:38:52 +0000

Source diff to previous version
1952421 Issue on sshd finds correct private key for a certificate when using ssh-agent

Version: 1:8.2p1-4ubuntu0.3 2021-08-10 21:06:16 UTC

  openssh (1:8.2p1-4ubuntu0.3) focal; urgency=medium

  * d/systemd/ssh@.service: preserve the systemd managed runtime directory to
    ensure parallel processes will not disrupt one another when halting
    (LP: #1905285)

 -- Athos Ribeiro <email address hidden> Fri, 23 Jul 2021 09:55:12 -0300

Source diff to previous version
1905285 socket-activated sshd breaks on concurrent connections

Version: 1:8.2p1-4ubuntu0.2 2021-03-10 17:06:16 UTC

  openssh (1:8.2p1-4ubuntu0.2) focal-security; urgency=medium

  * SECURITY UPDATE: double-free memory corruption in ssh-agent
    - debian/patches/CVE-2021-28041.patch: set ext_name to NULL after
      freeing it so it doesn't get freed again later on in ssh-agent.c.
    - CVE-2021-28041

 -- Marc Deslauriers <email address hidden> Tue, 09 Mar 2021 09:17:50 -0500

Source diff to previous version
CVE-2021-28041 ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a

Version: 1:8.2p1-4ubuntu0.1 2020-06-24 01:06:37 UTC

  openssh (1:8.2p1-4ubuntu0.1) focal; urgency=medium

  * d/p/lp-1876320-*: avoid applying defaults for every include statement
    (LP: #1876320)

 -- Christian Ehrhardt <email address hidden> Fri, 29 May 2020 09:37:09 +0200

1876320 Port parameter sshd_config is 22 AND whatever you specify



About   -   Send Feedback to @ubuntu_updates