Bug 40439 - openssh: multiple issues (4.0)
openssh: multiple issues (4.0)
Product: UCS
Classification: Unclassified
Component: Security updates
UCS 4.0
Other Linux
: P2 normal (vote)
: UCS 4.0-4-errata
Assigned To: Arvid Requate
Janek Walkenhorst
Depends on: 40438
Blocks: 40440
  Show dependency treegraph
Reported: 2016-01-15 10:11 CET by Arvid Requate
Modified: 2016-01-15 12:43 CET (History)
0 users

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional): Security
Max CVSS v3 score:
requate: Patch_Available+


Note You need to log in before you can comment on or make changes to this bug.
Description Arvid Requate univentionstaff 2016-01-15 10:11:08 CET
+++ This bug was initially created as a clone of Bug #40438 +++

Upstream Debian package version 1:6.0p1-4+deb7u3 fixes these issues:

* Client Information leak due to use of roaming connection feature (CVE-2016-0777)
* Client buffer-overflow when using roaming connections (CVE-2016-0778)
Comment 1 Arvid Requate univentionstaff 2016-01-15 10:40:56 CET
Upstream version imported, existing buildsystem patches adjusted, package built.
Advisory: openssh.yaml
Comment 2 Janek Walkenhorst univentionstaff 2016-01-15 12:06:38 CET
Patches: OK
Fix included: Upstream
Tests: OK
Advisory: OK
Comment 3 Janek Walkenhorst univentionstaff 2016-01-15 12:43:16 CET