-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 23 Nov 2015 04:08:05 -0500 Source: libssh Binary: libssh-4 libssh-dev libssh-dbg libssh-doc Architecture: source all amd64 Version: 0.5.4-1+deb7u2 Distribution: wheezy Urgency: medium Maintainer: Laurent Bigonville <bigon@debian.org> Changed-By: Christopher Knadle <Chris.Knadle@coredump.us> Description: libssh-4 - tiny C SSH library libssh-dbg - tiny C SSH library. Debug symbols libssh-dev - tiny C SSH library. Development files libssh-doc - tiny C SSH library. Documentation files Closes: 773577 784404 Changes: libssh (0.5.4-1+deb7u2) wheezy; urgency=medium . * Non-maintainer upload. * debian/patches: - Add 0005-security-fix-for-vulnerability-CVE-2014-8132.patch Fix "Double free on dangling pointers in initial key exchange packet" (Closes: #773577, CVE-2014-8132) - Add 0006-security-fix-for-vulnerability-CVE-2015-3146.patch Fix "null pointer dereference due to a logical error in the handling of a SSH_MSG_NEWKEYS and KEXDH_REPLY packets" (Closes: #784404, CVE-2015-3146) Checksums-Sha1: be882d3eb2fef01ad2a1f804059f8db8f2d6840b 2168 libssh_0.5.4-1+deb7u2.dsc 52ffc16a4ccf586f3f7156b5876d5ade054e29b2 11395 libssh_0.5.4-1+deb7u2.debian.tar.gz 1358a7b6bb3c0d4631be68835f7169ec6845d174 275148 libssh-doc_0.5.4-1+deb7u2_all.deb 3ec2f8ff287098d14069bc00ef5757cacf53d6c0 131206 libssh-4_0.5.4-1+deb7u2_amd64.deb f3c87b5ca7d5f6f438acc894a278aad6a3e18b05 184628 libssh-dev_0.5.4-1+deb7u2_amd64.deb 3b4f693345c5d9cf650fa16bff72221d2e50d5de 361066 libssh-dbg_0.5.4-1+deb7u2_amd64.deb Checksums-Sha256: df73b82196ba13d42456b245bc4376b934fabd8705e4713580832b50b82c1b14 2168 libssh_0.5.4-1+deb7u2.dsc 3d92f837c87c383e91224883fc9693cb3bae6f897310f89a6a2e31d2b2a1de6d 11395 libssh_0.5.4-1+deb7u2.debian.tar.gz a12fed469508f99434279a3f4b72bf5020276074ba259ee24259b5146a4c98cb 275148 libssh-doc_0.5.4-1+deb7u2_all.deb 9d34d3f9ed7fd31226a07789b13b12c2e7926a43829036f4bfcfac8ef0f0eda1 131206 libssh-4_0.5.4-1+deb7u2_amd64.deb 9691de480487455154ba266b32915529bc94c7bd1547326ab885f6b7f3fd5cc1 184628 libssh-dev_0.5.4-1+deb7u2_amd64.deb d89cac72ea66d270da3d2ebb86fcea9be0f6696d1cd88aae6014d092ba58286c 361066 libssh-dbg_0.5.4-1+deb7u2_amd64.deb Files: e70e5f1fe324d46e58538e6f803902c0 2168 libs optional libssh_0.5.4-1+deb7u2.dsc 5ebd0e081bd409dc7e1e2046f7617201 11395 libs optional libssh_0.5.4-1+deb7u2.debian.tar.gz bc9df9fa1361755cadce915153758234 275148 doc optional libssh-doc_0.5.4-1+deb7u2_all.deb 798e418cbdb87df5ea98bab3e0104b67 131206 libs optional libssh-4_0.5.4-1+deb7u2_amd64.deb e06c14f8e41b774f553d06011562ba02 184628 libdevel optional libssh-dev_0.5.4-1+deb7u2_amd64.deb 4f8b9872ed9a5248c05aa1bbbb7deb06 361066 debug extra libssh-dbg_0.5.4-1+deb7u2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQJ8BAEBCgBmBQJWgKm0XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXREMUUxMzE2RTkzQTc2MEE4MTA0RDg1RkFC QjNBNjgwMTg2NDlBQTA2AAoJELs6aAGGSaoGdcMP/Ru+d8sOhHSezx0M9WUaWeA0 lcNSNON5+3kPVCZmA5W6/3pZwVe+ICK/22OF4N37nANidh/RAXjbYJD7nlgB0gsD bd5/Zc9Ow0lCygnBQ2sa4KigA3NzwxT6uC69s2ZgYmTvGzZ2RA2TdDReW/8+WRm9 vFB0FaPa7poa3BboAwYoS7GgOhAAWOt/frKK4fz+sQn3dr4bPps7f9ws4ePNMhRk 6JqwlkTNX4vHHOIun7lV8Y2gH0TRnF4vUFLcBDkkBFsm2U3boyBBkLV9QOLRxi8I o00X86wTS3DCo/VveK0BvtwBhNRmpVPaKHni6NWGB1UYHiLBQoOjksK6veJouoFD 4uAU95ZI6RFmk5HWh9DAGmRURWDtiNbjLSvab2zyx/BEFYOPzhrB+5gTsIRvLuT3 kNefAh7YJeRmHtaIeX3WdwulN2ZIn9xUHr4JUJrTxExPIf4aLxTXWllSKlbQkahk SDQQ7NQGVDIPhi+F6RA1FxSuBVcxGb50cFb9IM1epkOAD3XnUD++Pd0kNCY2kZpT T3bunD25OtJgDvHjfngeSP/uUNn/Lv8cGofGaEi/ZBkT59/g53qi8zcrgFY3eF3H Mb3+tcl3UCd3wA2lmlDhUPX3x30azOr5A4lxZzomfAMel+A2m+fdM48do80dl6UV sTPQborIS/thvfBxIYZh =509B -----END PGP SIGNATURE-----
