-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Wed, 14 Jan 2009 00:34:08 +0000 Source: openssh Binary: openssh-client openssh-server ssh ssh-krb5 ssh-askpass-gnome openssh-client-udeb openssh-server-udeb Architecture: source all i386 Version: 1:5.1p1-5 Distribution: unstable Urgency: low Maintainer: Debian OpenSSH Maintainers <debian-ssh@lists.debian.org> Changed-By: Colin Watson <cjwatson@debian.org> Description: openssh-client - secure shell client, an rlogin/rsh/rcp replacement openssh-client-udeb - secure shell client for the Debian installer (udeb) openssh-server - secure shell server, an rshd replacement openssh-server-udeb - secure shell server for the Debian installer (udeb) ssh - secure shell client and server (metapackage) ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad ssh-krb5 - secure shell client and server (transitional package) Closes: 502444 Changes: openssh (1:5.1p1-5) unstable; urgency=low . * Backport from upstream CVS (Markus Friedl): - packet_disconnect() on padding error, too. Should reduce the success probability for the CPNI-957037 Plaintext Recovery Attack to 2^-18. * Check that /var/run/sshd.pid exists and that the process ID listed there corresponds to sshd before running '/etc/init.d/ssh reload' from if-up script; SIGHUP is racy if called at boot before sshd has a chance to install its signal handler, but fortunately the pid file is written after that which lets us avoid the race (closes: #502444). * While the above is a valuable sanity-check, it turns out that it doesn't really fix the bug (thanks to Kevin Price for testing), so for the meantime we'll just use '/etc/init.d/ssh restart', even though it is unfortunately heavyweight. Checksums-Sha1: ba646eae4bbb64f344be39e728297c90b958d1ac 1500 openssh_5.1p1-5.dsc 06f8431dc09feef73c3ba042f16c40ec8bbce539 216528 openssh_5.1p1-5.diff.gz 2d52dd43b6f1ca91645b382c70d8d6caa607d090 1202 ssh_5.1p1-5_all.deb a75c9272b09cf8b074c066114543dbac7901f806 115700 ssh-krb5_5.1p1-5_all.deb 11f2ac5f539f8ec645085829bf17b89860572d88 816358 openssh-client_5.1p1-5_i386.deb 2a76b53405fbf744f9b671340f89331939012a68 295098 openssh-server_5.1p1-5_i386.deb e9259a69b7b8f909552e92592e5c46cf7b2d0e1e 123248 ssh-askpass-gnome_5.1p1-5_i386.deb 33c853d9ff0caffc03f7dd8d00e67c9fda5aa9db 177226 openssh-client-udeb_5.1p1-5_i386.udeb 0a2ca8234dc40e226ee49fb5cb1b1e190ac56cf9 198830 openssh-server-udeb_5.1p1-5_i386.udeb Checksums-Sha256: ff74d76f8aca28ed1be155c055f8c0c6e9cccefe05989c5a523ff35f305c2056 1500 openssh_5.1p1-5.dsc 8569bbd80a6d65313f06e555d5646c2802410fb3245b15d4698c7c47ac8bae06 216528 openssh_5.1p1-5.diff.gz e69b000bd5235fe04520cce23c15d03535a242deabb9f68b23b171a00481d3d0 1202 ssh_5.1p1-5_all.deb cb1a51af83f5fb7a61219b8d460ad8cf3dd2baa2129eee7a1dcea798c72614b7 115700 ssh-krb5_5.1p1-5_all.deb 7fdb69ac99a4d82d8a3343f05fde0f286601b673c5b479871554719d738e432b 816358 openssh-client_5.1p1-5_i386.deb cdcd34e9f741c2fd5bb788b3aa0542b45ab493a29efd09ba970d1519e2780aeb 295098 openssh-server_5.1p1-5_i386.deb a537e8a890f123b716bcbf2c5f850c12ab64f055c4e31ef86cc2fabd20b0fdc4 123248 ssh-askpass-gnome_5.1p1-5_i386.deb 8d595bf8695fa0d5d7d8d2d24813f3a68fd23ab06a54987de4547ad868b4ab87 177226 openssh-client-udeb_5.1p1-5_i386.udeb 82f5d43d3efd279582494886ec6cd5ded1fd5a4947d37a060e19b35dd84dfb97 198830 openssh-server-udeb_5.1p1-5_i386.udeb Files: 338282d6bc34e9ea227862557a042818 1500 net standard openssh_5.1p1-5.dsc e6a593c2767c02cc9e72a8252b8e2709 216528 net standard openssh_5.1p1-5.diff.gz 2ca663df6fd8e7625b6833f3e0db6021 1202 net extra ssh_5.1p1-5_all.deb ddd1930735964a57247fbd97c433ba2d 115700 net extra ssh-krb5_5.1p1-5_all.deb 50146536e1e6c255417dfefddf4e0f97 816358 net standard openssh-client_5.1p1-5_i386.deb 1fdda584de5a3a3ce89a1e7dab01e1f4 295098 net optional openssh-server_5.1p1-5_i386.deb e5a082f9ac389a69d4afe51a33e77f4a 123248 gnome optional ssh-askpass-gnome_5.1p1-5_i386.deb b7eca5e99c656a5e16c32d30dd829579 177226 debian-installer optional openssh-client-udeb_5.1p1-5_i386.udeb b0100f45a3e733bc83450d51b34c79a0 198830 debian-installer optional openssh-server-udeb_5.1p1-5_i386.udeb Package-Type: udeb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Colin Watson <cjwatson@debian.org> -- Debian developer iD8DBQFJbTbg9t0zAhD6TNERApBnAJ0ZY8W4HW2uqAReHECdSjodIP9EwwCdFEHk cwQiqjV3QoofCLFSma6g6rI= =aI8k -----END PGP SIGNATURE----- Accepted: openssh-client-udeb_5.1p1-5_i386.udeb to pool/main/o/openssh/openssh-client-udeb_5.1p1-5_i386.udeb openssh-client_5.1p1-5_i386.deb to pool/main/o/openssh/openssh-client_5.1p1-5_i386.deb openssh-server-udeb_5.1p1-5_i386.udeb to pool/main/o/openssh/openssh-server-udeb_5.1p1-5_i386.udeb openssh-server_5.1p1-5_i386.deb to pool/main/o/openssh/openssh-server_5.1p1-5_i386.deb openssh_5.1p1-5.diff.gz to pool/main/o/openssh/openssh_5.1p1-5.diff.gz openssh_5.1p1-5.dsc to pool/main/o/openssh/openssh_5.1p1-5.dsc ssh-askpass-gnome_5.1p1-5_i386.deb to pool/main/o/openssh/ssh-askpass-gnome_5.1p1-5_i386.deb ssh-krb5_5.1p1-5_all.deb to pool/main/o/openssh/ssh-krb5_5.1p1-5_all.deb ssh_5.1p1-5_all.deb to pool/main/o/openssh/ssh_5.1p1-5_all.deb
