Accepted dropbear 2022.83-4 (source) into unstable
- To: debian-devel-changes@lists.debian.org
- Subject: Accepted dropbear 2022.83-4 (source) into unstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Thu, 25 Jan 2024 02:34:35 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: dropbear_2022.83-4_source.changes
- Debian-source: dropbear
- Debian-suite: unstable
- Debian-version: 2022.83-4
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=pQ2DDVr2noJXduEczDjkES7G5vivhcsj8vk2uiPONmQ=; b=EB/KrzD7bPwpC1U5fsbTZXpHEu 7uOjms4J8n+wPV6YJIBLX8Ed1ezdwVhwJXzz0WxtzykYmk47PyrlR9i4FlCTYIv8BXGHG/BFTBZaD hPwPupYcdv5LPHTcr2ICjye4e1Ky2oIfhP9nChsXYfmfyjJIl4sEyVQ1vwgoYQWWc4XycOMFNmjvi dfTnCWAR6FhYy7ILaJUjyffohqk44jLAHfPqefgIgNgRY5thJCyyDWZbZ2AFlnK4UptocP7Sx7O+A W5MyJFnzFoSfZKu18L7dsC2JgkcMdehbXpBbagLl+FwYxvVJfkamfteOraq1+Ng1xAzEgwArevJZP yiFcxgxg==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1rSpZb-001K0o-V6@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 25 Jan 2024 02:08:38 +0100
Source: dropbear
Architecture: source
Version: 2022.83-4
Distribution: unstable
Urgency: medium
Maintainer: Guilhem Moulin <guilhem@debian.org>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Closes: 1059001
Changes:
dropbear (2022.83-4) unstable; urgency=medium
.
* Fix CVE-2023-48795: (terrapin attack): The SSH transport protocol with
certain OpenSSH extensions allows remote attackers to bypass integrity
checks such that some packets are omitted (from the extension negotiation
message), and a client and server may consequently end up with a
connection for which some security features have been downgraded or
disabled, aka a Terrapin attack. (Closes: #1059001)
Checksums-Sha1:
529cce1939c25d2a9f1886344f6b21444e0a6144 2524 dropbear_2022.83-4.dsc
ed7b1af3304dcb9f607ddb73db0d4a240dc6e4c4 37300 dropbear_2022.83-4.debian.tar.xz
a98b7789151840b0a10ac5ade72a8732d20444d6 7072 dropbear_2022.83-4_amd64.buildinfo
Checksums-Sha256:
74c39231d745bafd5c14e6978f016292bec418f9f70374fb360a0e732e1e17ae 2524 dropbear_2022.83-4.dsc
c18217754f260fa29240b0516b1ce69cfaf8c600ec7dbf81eb427c40740718dc 37300 dropbear_2022.83-4.debian.tar.xz
54e0fbc46f7455d8ca55fe9beee3fdda74aad7293f0f3cbc46b664415363e03e 7072 dropbear_2022.83-4_amd64.buildinfo
Files:
4f765e656c0b5da906d611892bf1bbf4 2524 net optional dropbear_2022.83-4.dsc
5ad523ca46a1f5379bf8b72aa968973e 37300 net optional dropbear_2022.83-4.debian.tar.xz
5a465386243990cfaa85916038349412 7072 net optional dropbear_2022.83-4_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEERpy6p3b9sfzUdbME05pJnDwhpVIFAmWxtVkACgkQ05pJnDwh
pVIZ5RAAn7ha9Miw16QWcXAYTUkH/MFjeK9oy4aXZLqKs6YaPtfujwK/9XYnRftZ
Mk/RA5927XI9RzIXJW+UnP4qb9V4gP1a979O2xO44+B2am+o469pCa5po+Yucpqs
yloNPK+jP/EsaeAAGXEnLZjC8H4ue2LTo0C+Wa7zCS5dYElOvVUR3FQnyU+W6YtR
nxxw/7y0p/WLzKpihSYxfqcxSYqRO1gPkPOonz94MYetHeImYSgkTCsW4Mg1j1Xi
SgHO5VuxiwXNC4VnDmawAFf2KaievK0aZRDHg3xbJO7G6FA7itCJ8bCbnWK6EodO
Iv/AOslOFKJ2K2ARI6o0dRqtTKc8Xg973lXT+V+Y10XExWX8iz7qam5wVi13seZr
igZMpgmhsGSGjuKurWH7XRUdLyWWQ4CBmphEqsrL3C9Lr75sNbWJL8lcY+KaETzb
zwbvnBDGxZw1XhPFOmWcHkkz0IGpfLcEn21nlMXfR3P5Y6ZKm97NLDK9YfQyPwHq
wJfQi2uHozI5QakbzFSaFwTgOyW8vZN4JXynULYEa7Jd7aYp8stFZNPyPIltQTAx
UUKALRG0BN7Ztv73QmbWMkHHyrEXPYXLCRnl/8elY6giANTeJ2EGPlU4xFuhcEb9
tHnu21RJFsjp9H/gLRnr6yKW6KLddUQKljWu46zeaqUP8rhGYng=
=w8e8
-----END PGP SIGNATURE-----