summaryrefslogtreecommitdiff
path: root/debian
diff options
context:
space:
mode:
authorColin Watson <cjwatson@debian.org>2008-04-09 13:58:13 +0000
committerColin Watson <cjwatson@debian.org>2008-04-09 13:58:13 +0000
commit19ccea525446d5a3c2a176d813c505be81b91cbf (patch)
tree1f4ba5fe2a6e65a14c4d2bc624c937c397b12113 /debian
parent9c1a655c5ba96f5e8c06bba7fddd1f370970a51b (diff)
Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-8.
- CVE-2008-1657: Ignore ~/.ssh/rc if a sshd_config ForceCommand is specified.
Diffstat (limited to 'debian')
-rw-r--r--debian/changelog10
1 files changed, 8 insertions, 2 deletions
diff --git a/debian/changelog b/debian/changelog
index 2801ec2d3..9a9095189 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
1openssh (1:4.7p1-9) UNRELEASED; urgency=low
2
3 * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-8.
4
5 -- Colin Watson <cjwatson@debian.org> Wed, 09 Apr 2008 14:57:43 +0100
6
1openssh (1:4.7p1-8) unstable; urgency=high 7openssh (1:4.7p1-8) unstable; urgency=high
2 8
3 * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-5. 9 * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-5.
@@ -6,8 +12,8 @@ openssh (1:4.7p1-8) unstable; urgency=high
6 * Tweak scp's reporting of filenames in verbose mode to be a bit less 12 * Tweak scp's reporting of filenames in verbose mode to be a bit less
7 confusing with spaces (thanks, Nicolas Valcárcel; LP: #89945). 13 confusing with spaces (thanks, Nicolas Valcárcel; LP: #89945).
8 * Backport from 4.9p1: 14 * Backport from 4.9p1:
9 - Ignore ~/.ssh/rc if a sshd_config ForceCommand is specified (see 15 - CVE-2008-1657: Ignore ~/.ssh/rc if a sshd_config ForceCommand is
10 http://www.securityfocus.com/bid/28531/info). 16 specified.
11 - Add no-user-rc authorized_keys option to disable execution of 17 - Add no-user-rc authorized_keys option to disable execution of
12 ~/.ssh/rc. 18 ~/.ssh/rc.
13 * Backport from Simon Wilkinson's GSSAPI key exchange patch for 5.0p1: 19 * Backport from Simon Wilkinson's GSSAPI key exchange patch for 5.0p1: