From 19ccea525446d5a3c2a176d813c505be81b91cbf Mon Sep 17 00:00:00 2001
From: Colin Watson <cjwatson@debian.org>
Date: Wed, 9 Apr 2008 13:58:13 +0000
Subject: Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-8.
 - CVE-2008-1657: Ignore ~/.ssh/rc if a sshd_config ForceCommand is specified.

---
 debian/changelog | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 2801ec2d3..9a9095189 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+openssh (1:4.7p1-9) UNRELEASED; urgency=low
+
+  * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-8.
+
+ -- Colin Watson <cjwatson@debian.org>  Wed, 09 Apr 2008 14:57:43 +0100
+
 openssh (1:4.7p1-8) unstable; urgency=high
 
   * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-5.
@@ -6,8 +12,8 @@ openssh (1:4.7p1-8) unstable; urgency=high
   * Tweak scp's reporting of filenames in verbose mode to be a bit less
     confusing with spaces (thanks, Nicolas Valcárcel; LP: #89945).
   * Backport from 4.9p1:
-    - Ignore ~/.ssh/rc if a sshd_config ForceCommand is specified (see
-      http://www.securityfocus.com/bid/28531/info).
+    - CVE-2008-1657: Ignore ~/.ssh/rc if a sshd_config ForceCommand is
+      specified.
     - Add no-user-rc authorized_keys option to disable execution of
       ~/.ssh/rc.
   * Backport from Simon Wilkinson's GSSAPI key exchange patch for 5.0p1:
-- 
cgit v1.2.3