New upstream release with significantly reworked PKCS#11 support, GSSAPI key exchange and several fixes for CVE-2019-6111 and CVE-2019-6109

How to install

sudo dnf upgrade --advisory=FEDORA-2019-0f4190cdb0

This update has been submitted for testing by jjelen.

a year ago

This update has been pushed to testing.

a year ago
User Icon cserpentis commented & provided feedback a year ago
karma

works for me

User Icon atim provided feedback a year ago
karma
Test Case OpenSSH
User Icon sikevux commented & provided feedback a year ago
karma

LGTM

Test Case OpenSSH
User Icon bojan commented & provided feedback a year ago
karma

Works here.

User Icon pcw commented & provided feedback a year ago
karma

Works for me.

BZ#1701072 openssh-8.0p1 is available
User Icon pwalter commented & provided feedback a year ago
karma

Works

User Icon kparal commented & provided feedback a year ago
karma

I can ssh in and ssh out

User Icon frantisekz commented & provided feedback a year ago
karma

Works fine

User Icon hhlp commented & provided feedback a year ago
karma

lgtm

User Icon renault commented & provided feedback a year ago
karma

Works fine, no regressions found

This update has been submitted for batched by bodhi.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
10
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
10
Stable by Time
disabled
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
BZ#1666119 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output
0
0
BZ#1666121 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output [fedora-all]
0
0
BZ#1666127 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client
0
0
BZ#1666128 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client [fedora-all]
0
0
BZ#1687230 When using ssh-agent with ecdsa-sha2-nistp384 key on a security key (Yubikey 5 NC in this case) ssh-agent fails to sign and then seg faults.
0
0
BZ#1701072 openssh-8.0p1 is available
0
1

Automated Test Results

Test Cases

0 2 Test Case OpenSSH