openssh - Debian Package Tracker

general

source: openssh (main)
version: 1:9.0p1-1
maintainer: Debian OpenSSH Maintainers (archive) (DMD)
uploaders: Colin Watson [DMD] – Matthew Vernon [DMD]
arch: all any
std-ver: 4.1.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1:7.4p1-10+deb9u7
o-o-sec: 1:7.4p1-10+deb9u6
oldstable: 1:7.9p1-10+deb10u2
old-sec: 1:7.9p1-10+deb10u1
old-bpo: 1:8.4p1-2~bpo10+1
stable: 1:8.4p1-5
testing: 1:9.0p1-1
unstable: 1:9.0p1-1

versioned links

1:7.4p1-10+deb9u6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:7.4p1-10+deb9u7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:7.9p1-10+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:7.9p1-10+deb10u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:8.4p1-2~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:8.4p1-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:9.0p1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

openssh-client (281 bugs: 0, 161, 120, 0)
openssh-client-udeb
openssh-server (236 bugs: 2, 176, 58, 0)
openssh-server-udeb
openssh-sftp-server (1 bugs: 0, 1, 0, 0)
openssh-tests
ssh (135 bugs: 0, 72, 63, 0)
ssh-askpass-gnome (2 bugs: 0, 2, 0, 0)

action needed

Marked for autoremoval on 30 June due to nvidia-graphics-drivers-tesla-470: #1011146 high

Version 1:9.0p1-1 of openssh is marked for autoremoval from testing on Thu 30 Jun 2022. It depends (transitively) on nvidia-graphics-drivers-tesla-470, affected by #1011146. You should try to prevent the removal by fixing these RC bugs.

Created: 2022-05-24 Last update: 2022-05-26 00:56

lintian reports 3 errors and 9 warnings high

Lintian reports 3 errors and 9 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2022-01-01 Last update: 2022-01-01 04:34

Depends on packages which need a new maintainer normal

The packages that openssh depends on which need a new maintainer are:

dh-exec (#851746)
- Build-Depends: dh-exec
ssh-askpass (#993155)
- Suggests: ssh-askpass ssh-askpass

Created: 2019-11-22 Last update: 2022-05-26 01:32

49 bugs tagged patch in the BTS normal

The BTS contains patches fixing 49 bugs (67 if counting merged bugs), consider including or untagging them.

Created: 2021-08-14 Last update: 2022-05-26 00:50

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 1:9.0p1-2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit de790f931452a2dcb4490d074d5a16ab8456a523
Author: Colin Watson <cjwatson@debian.org>
Date:   Tue Apr 19 14:01:03 2022 +0100

    Add changelog entry

commit 3ebc81617327b922417e1c424409bed069ca1e75
Merge: b26877f43 1fb0849d7
Author: Markus Teich <mteich@google.com>
Date:   Tue Apr 19 11:47:38 2022 +0000

    Merge branch 'flurb-master-patch-38465' into 'master'
    
    Delete obsolete upstart configuration override
    
    See merge request ssh-team/openssh!13

commit 1fb0849d7805d5fdd7c91cc457a67d261f762f51
Author: Markus Teich <mteich@google.com>
Date:   Tue Apr 19 11:47:04 2022 +0000

    Delete obsolete upstart configuration override
    
    Upstart jobs were deleted with b4fc0d329c03de1c38dc3f908a10f7239c32a05c 4 years ago. This `.override` file apparently was forgotten in that cleanup.

Created: 2022-04-19 Last update: 2022-05-22 08:35

1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:

CVE-2021-41617: (needs triaging) sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-09-26 Last update: 2022-04-11 06:03

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2021-41617: (needs triaging) sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-09-26 Last update: 2022-04-11 06:03

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2018-04-03 19:52

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.1.0).

Created: 2017-06-25 Last update: 2022-05-11 23:24

testing migrations

This package is part of the ongoing testing transition known as auto-openssl. Please avoid uploads unrelated to this transition, they would likely delay it and require supplementary work from the release managers. On the other hand, if your package has problems preventing it to migrate to testing, please fix them as soon as possible. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2022-04-11] openssh 1:9.0p1-1 MIGRATED to testing (Debian testing watch)
[2022-04-09] Accepted openssh 1:9.0p1-1 (source) into unstable (Colin Watson)
[2022-03-15] openssh 1:8.9p1-3 MIGRATED to testing (Debian testing watch)
[2022-02-25] Accepted openssh 1:8.9p1-3 (source) into unstable (Colin Watson)
[2022-02-24] Accepted openssh 1:8.9p1-2 (source) into unstable (Colin Watson)
[2022-02-24] Accepted openssh 1:8.9p1-1 (source) into unstable (Colin Watson)
[2022-02-18] openssh 1:8.8p1-1 MIGRATED to testing (Debian testing watch)
[2022-02-15] Accepted openssh 1:8.8p1-1 (source) into unstable (Colin Watson)
[2021-12-31] openssh 1:8.7p1-4 MIGRATED to testing (Debian testing watch)
[2021-12-29] Accepted openssh 1:8.7p1-4 (source) into unstable (Colin Watson)
[2021-12-29] Accepted openssh 1:8.7p1-3 (source) into unstable (Colin Watson)
[2021-11-16] openssh 1:8.7p1-2 MIGRATED to testing (Debian testing watch)
[2021-11-13] Accepted openssh 1:8.7p1-2 (source) into unstable (Colin Watson)
[2021-11-08] openssh 1:8.7p1-1 MIGRATED to testing (Debian testing watch)
[2021-11-06] Accepted openssh 1:8.7p1-1 (source) into unstable (Colin Watson)
[2021-09-06] openssh 1:8.4p1-6 MIGRATED to testing (Debian testing watch)
[2021-08-19] Accepted openssh 1:8.4p1-6 (source) into unstable (Colin Watson)
[2021-03-18] openssh 1:8.4p1-5 MIGRATED to testing (Debian testing watch)
[2021-03-13] Accepted openssh 1:8.4p1-5 (source) into unstable (Colin Watson)
[2021-02-25] openssh 1:8.4p1-4 MIGRATED to testing (Debian testing watch)
[2021-02-15] Accepted openssh 1:8.4p1-4 (source) into unstable (Colin Watson)
[2020-12-06] openssh 1:8.4p1-3 MIGRATED to testing (Debian testing watch)
[2020-12-02] Accepted openssh 1:8.4p1-3 (source) into unstable (Colin Watson)
[2020-11-25] Accepted openssh 1:8.4p1-2~bpo10+1 (source amd64 all) into buster-backports, buster-backports (Debian FTP Masters) (signed by: Mike Gabriel)
[2020-11-19] openssh 1:8.4p1-2 MIGRATED to testing (Debian testing watch)
[2020-10-26] Accepted openssh 1:8.4p1-2 (source) into unstable (Colin Watson)
[2020-10-20] Accepted openssh 1:8.4p1-1 (source) into unstable (Colin Watson)
[2020-06-09] openssh 1:8.3p1-1 MIGRATED to testing (Debian testing watch)
[2020-06-07] Accepted openssh 1:8.3p1-1 (source) into unstable (Colin Watson)
[2020-03-02] openssh 1:8.2p1-4 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 639 687
RC: 2
I&N: 405 426
M&W: 231 258
F&P: 1
patch: 49 67

links

homepage
lintian (3, 9)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
l10n (100, -)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:9.0p1-1
142 bugs (7 patches)