From c2e1f584e0372cfc414eda3a0691971ebb2f322d Mon Sep 17 00:00:00 2001 From: Colin Watson Date: Tue, 13 May 2008 01:02:55 +0000 Subject: add CVE identifier for OpenSSL vulnerability --- debian/changelog | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/debian/changelog b/debian/changelog index 95ab72caf..7365312b3 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,7 +1,7 @@ openssh (1:4.7p1-9) UNRELEASED; urgency=critical * Fill in CVE identifier for security vulnerability fixed in 1:4.7p1-8. - * Mitigate OpenSSL security vulnerability: + * Mitigate OpenSSL security vulnerability (CVE-2008-0166): - Add key blacklisting support. Keys listed in /etc/ssh/blacklist.TYPE-LENGTH will be rejected for authentication by sshd, unless "PermitBlacklistedKeys yes" is set in -- cgit v1.2.3