UbuntuUpdates.org

Package "dropbear-initramfs"

Name: dropbear-initramfs

Description:

lightweight SSH2 server and client - initramfs integration
Latest version: 2020.81-5ubuntu0.1
Release: jammy (22.04)
Level: updates
Repository: universe
Head package: dropbear
Homepage: https://matt.ucc.asn.au/dropbear/dropbear.html

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "dropbear-initramfs"

All arch deb package
APT INSTALL

Other versions of "dropbear-initramfs" in Jammy

Repository Area Version
base universe 2020.81-5
security universe 2020.81-5ubuntu0.1

Changelog

Version: 2020.81-5ubuntu0.1 2025-02-25 17:07:01 UTC

  dropbear (2020.81-5ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: non-RFC-compliant check
    - debian/patches/CVE-2021-36369.patch: add option to disable trivial
      auth methods
    - CVE-2021-36369
  * SECURITY UPDATE: key exchange and handshake susceptible to mitm
    - debian/patches/CVE-2023-48795.patch: implement strict key exchange
      mode - SSH_STRICT_KEX_C
    - CVE-2023-48795

 -- Sudhakar Verma <email address hidden> Thu, 26 Sep 2024 15:52:12 +0530
CVE-2021-36369 An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH
CVE-2023-48795 The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integri


About   -   Send Feedback to @ubuntu_updates