Publishing details

• Published on 2023-10-05

Changelog

openssh (1:9.2p1-2+deb12u1) bookworm; urgency=medium

  * Cherry-pick from OpenSSH 9.3p2:
    - [CVE-2023-38408] Fix a condition where specific libraries loaded via
      ssh-agent(1)'s PKCS#11 support could be abused to achieve remote code
      execution via a forwarded agent socket (closes: #1042460).

 -- Colin Watson <email address hidden>  Sat, 23 Sep 2023 23:11:33 +0100

Builds

Package files

• openssh_9.2p1-2+deb12u1.debian.tar.xz (180.6 KiB)
• openssh_9.2p1-2+deb12u1.dsc (3.3 KiB)
• openssh_9.2p1.orig.tar.gz (1.8 MiB)
• openssh_9.2p1.orig.tar.gz.asc (833 bytes)