Publishing details

• Published on 2023-07-24
• Copied from ubuntu jammy in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

openssh (1:8.9p1-3ubuntu0.3) jammy-security; urgency=medium

  * SECURITY UPDATE: remote code execution relating to PKCS#11 providers
    - debian/patches/CVE-2023-38408-1.patch: terminate process if requested
      to load a PKCS#11 provider that isn't a PKCS#11 provider in
      ssh-pkcs11.c.
    - debian/patches/CVE-2023-38408-2.patch: disallow remote addition of
      FIDO/PKCS11 provider in ssh-agent.1, ssh-agent.c.
    - debian/patches/CVE-2023-38408-3.patch: ensure FIDO/PKCS11 libraries
      contain expected symbols in misc.c, misc.h, ssh-pkcs11.c, ssh-sk.c.
    - CVE-2023-38408

 -- Marc Deslauriers <email address hidden>  Wed, 19 Jul 2023 15:41:52 -0400

Builds

• amd64
• arm64
• armhf
• i386
• ppc64el
• riscv64
• s390x

Built packages

• openssh-client secure shell (SSH) client, for secure access to remote machines

• openssh-client-dbgsym debug symbols for openssh-client

• openssh-server secure shell (SSH) server, for secure access from remote machines

• openssh-server-dbgsym debug symbols for openssh-server

• openssh-sftp-server secure shell (SSH) sftp server module, for SFTP access from remote machines

• openssh-sftp-server-dbgsym debug symbols for openssh-sftp-server

• openssh-tests OpenSSH regression tests

• openssh-tests-dbgsym debug symbols for openssh-tests

• ssh secure shell client and server (metapackage)

• ssh-askpass-gnome interactive X program to prompt users for a passphrase for ssh-add

• ssh-askpass-gnome-dbgsym debug symbols for ssh-askpass-gnome

Package files

• openssh-client-dbgsym_8.9p1-3ubuntu0.3_amd64.ddeb (2.9 MiB)
• openssh-client-dbgsym_8.9p1-3ubuntu0.3_arm64.ddeb (2.8 MiB)
• openssh-client-dbgsym_8.9p1-3ubuntu0.3_armhf.ddeb (3.3 MiB)
• openssh-client-dbgsym_8.9p1-3ubuntu0.3_i386.ddeb (3.0 MiB)
• openssh-client-dbgsym_8.9p1-3ubuntu0.3_ppc64el.ddeb (2.9 MiB)
• openssh-client-dbgsym_8.9p1-3ubuntu0.3_riscv64.ddeb (3.5 MiB)
• openssh-client-dbgsym_8.9p1-3ubuntu0.3_s390x.ddeb (2.4 MiB)
• openssh-client_8.9p1-3ubuntu0.3_amd64.deb (888.7 KiB)
• openssh-client_8.9p1-3ubuntu0.3_arm64.deb (847.0 KiB)
• openssh-client_8.9p1-3ubuntu0.3_armhf.deb (820.3 KiB)
• openssh-client_8.9p1-3ubuntu0.3_i386.deb (911.4 KiB)
• openssh-client_8.9p1-3ubuntu0.3_ppc64el.deb (1.0 MiB)
• openssh-client_8.9p1-3ubuntu0.3_riscv64.deb (796.1 KiB)
• openssh-client_8.9p1-3ubuntu0.3_s390x.deb (827.4 KiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_amd64.ddeb (940.9 KiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_arm64.ddeb (936.7 KiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_armhf.ddeb (914.0 KiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_i386.ddeb (760.5 KiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_ppc64el.ddeb (1.1 MiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_riscv64.ddeb (899.5 KiB)
• openssh-server-dbgsym_8.9p1-3ubuntu0.3_s390x.ddeb (932.7 KiB)
• openssh-server_8.9p1-3ubuntu0.3_amd64.deb (424.1 KiB)
• openssh-server_8.9p1-3ubuntu0.3_arm64.deb (403.8 KiB)
• openssh-server_8.9p1-3ubuntu0.3_armhf.deb (442.2 KiB)
• openssh-server_8.9p1-3ubuntu0.3_i386.deb (484.6 KiB)
• openssh-server_8.9p1-3ubuntu0.3_ppc64el.deb (499.6 KiB)
• openssh-server_8.9p1-3ubuntu0.3_riscv64.deb (415.8 KiB)
• openssh-server_8.9p1-3ubuntu0.3_s390x.deb (396.2 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_amd64.ddeb (107.1 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_arm64.ddeb (106.5 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_armhf.ddeb (163.3 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_i386.ddeb (138.6 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_ppc64el.ddeb (119.2 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_riscv64.ddeb (162.1 KiB)
• openssh-sftp-server-dbgsym_8.9p1-3ubuntu0.3_s390x.ddeb (101.7 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_amd64.deb (37.9 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_arm64.deb (36.0 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_armhf.deb (63.6 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_i386.deb (72.8 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_ppc64el.deb (41.1 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_riscv64.deb (58.7 KiB)
• openssh-sftp-server_8.9p1-3ubuntu0.3_s390x.deb (35.6 KiB)
• openssh-tests-dbgsym_8.9p1-3ubuntu0.3_amd64.ddeb (1.5 MiB)
• openssh-tests-dbgsym_8.9p1-3ubuntu0.3_arm64.ddeb (1.5 MiB)
• openssh-tests-dbgsym_8.9p1-3ubuntu0.3_armhf.ddeb (2.7 MiB)
• openssh-tests-dbgsym_8.9p1-3ubuntu0.3_ppc64el.ddeb (1.4 MiB)
• openssh-tests-dbgsym_8.9p1-3ubuntu0.3_riscv64.ddeb (2.8 MiB)
• openssh-tests-dbgsym_8.9p1-3ubuntu0.3_s390x.ddeb (1.1 MiB)
• openssh-tests_8.9p1-3ubuntu0.3_amd64.deb (1.4 MiB)
• openssh-tests_8.9p1-3ubuntu0.3_arm64.deb (1.3 MiB)
• openssh-tests_8.9p1-3ubuntu0.3_armhf.deb (875.8 KiB)
• openssh-tests_8.9p1-3ubuntu0.3_ppc64el.deb (1.4 MiB)
• openssh-tests_8.9p1-3ubuntu0.3_riscv64.deb (1.1 MiB)
• openssh-tests_8.9p1-3ubuntu0.3_s390x.deb (1.3 MiB)
• openssh_8.9p1-3ubuntu0.3.debian.tar.xz (187.4 KiB)
• openssh_8.9p1-3ubuntu0.3.dsc (3.0 KiB)
• openssh_8.9p1.orig.tar.gz (1.7 MiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_amd64.ddeb (16.8 KiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_arm64.ddeb (16.9 KiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_armhf.ddeb (16.5 KiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_i386.ddeb (15.7 KiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_ppc64el.ddeb (17.0 KiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_riscv64.ddeb (16.7 KiB)
• ssh-askpass-gnome-dbgsym_8.9p1-3ubuntu0.3_s390x.ddeb (16.6 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_amd64.deb (17.6 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_arm64.deb (17.2 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_armhf.deb (16.9 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_i386.deb (17.8 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_ppc64el.deb (17.5 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_riscv64.deb (16.9 KiB)
• ssh-askpass-gnome_8.9p1-3ubuntu0.3_s390x.deb (17.6 KiB)
• ssh_8.9p1-3ubuntu0.3_all.deb (4.7 KiB)