Accepted php-phpseclib 2.0.30-2~deb10u2 (source) into oldoldstable
- To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
- Subject: Accepted php-phpseclib 2.0.30-2~deb10u2 (source) into oldoldstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Thu, 25 Jan 2024 01:10:20 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: php-phpseclib_2.0.30-2~deb10u2_source.changes
- Debian-source: php-phpseclib
- Debian-suite: oldoldstable
- Debian-version: 2.0.30-2~deb10u2
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=pnFvoWusptXPLxpr9V28nyQT1793Sn5UxFLO9OjlE64=; b=giqm6g6ZJMmqQ3kMdpzXE8DeaZ MBV2ixTNuMrV5O4mWd+UKMo/rmhV1pLYPUZ1zndtpLrAvZQdULl0f2cWlcn7LllZG61S07oPc9LpY 2HLdYpuNtEd31igcOLSqyu9YU5MybwbD29VSpwYeapEcgryXrQ8nhZ1zmfb4fHOrn23RvjibXwu9b UmNVMWePrbVgrr25T/NmEJb9HZ6NCdcdPEeOQkiOhz8ONQv8Zel39Pvc6BX3p1MRKo2VUWbtITQe7 e+M+dwTNobe7h9VahSRtYQsbLuzCktqhb6nRc8ysAj/js5ivvE44GdVBA1/LWfLV4C9jpfeSUCbij ezlp8tkQ==;
- Mail-followup-to: debian-lts@lists.debian.org
- Message-id: <E1rSoG4-00F3YT-Ng@seger.debian.org>
- Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 25 Jan 2024 01:42:41 +0100
Source: php-phpseclib
Architecture: source
Version: 2.0.30-2~deb10u2
Distribution: buster-security
Urgency: high
Maintainer: Debian PHP PEAR Maintainers <pkg-php-pear@lists.alioth.debian.org>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Changes:
php-phpseclib (2.0.30-2~deb10u2) buster-security; urgency=high
.
* Non-maintainer upload by the LTS Security Team.
* Fix CVE-2023-48795 (terrapin attack): The SSH transport protocol with
certain OpenSSH extensions allows remote attackers to bypass integrity
checks such that some packets are omitted (from the extension negotiation
message), and a client and server may consequently end up with a
connection for which some security features have been downgraded or
disabled, aka a Terrapin attack.
Checksums-Sha1:
9773875ba11b74ea93ac1845c2ed667e00676f3a 2170 php-phpseclib_2.0.30-2~deb10u2.dsc
59cc705f87d2a0e3b86a70913783d0ecfc502d81 18924 php-phpseclib_2.0.30-2~deb10u2.debian.tar.xz
dc59c46b556041e5f8fc51264ff06e233e7afcbe 7657 php-phpseclib_2.0.30-2~deb10u2_amd64.buildinfo
Checksums-Sha256:
4d415e4cb8a483a4e3877bef42954b33862a4b1179bc2c0ce6c51b579f718122 2170 php-phpseclib_2.0.30-2~deb10u2.dsc
3842b5f35a21a9a570fbb899f138eaa030e1c4d349963428ecebb2ce84486830 18924 php-phpseclib_2.0.30-2~deb10u2.debian.tar.xz
f162198d5412eee510e2da1cdfbce0f0bcb67168a3be5aea301e98829c6514f9 7657 php-phpseclib_2.0.30-2~deb10u2_amd64.buildinfo
Files:
a86e84f11beafbc2bf7bf0c0b270dd8f 2170 php optional php-phpseclib_2.0.30-2~deb10u2.dsc
c131ea24e9fc0bab968d66ad6e93db10 18924 php optional php-phpseclib_2.0.30-2~deb10u2.debian.tar.xz
ede9c5d6a8b62b7e66db431ca564bf5b 7657 php optional php-phpseclib_2.0.30-2~deb10u2_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=ysd+
-----END PGP SIGNATURE-----