FEDORA-2019-0f4190cdb0

security update in Fedora 30 for openssh

Status: stable a month ago

New upstream release with significantly reworked PKCS#11 support, GSSAPI key exchange and several fixes for CVE-2019-6111 and CVE-2019-6109

How to install

sudo dnf upgrade --advisory=FEDORA-2019-0f4190cdb0

Comments 15

This update has been submitted for testing by jjelen.

This update has been pushed to testing.

works for me

karma: +1
karma: +1 critpath: +1 OpenSSH: +1

LGTM

karma: +1 critpath: +1 OpenSSH: +1

Works here.

karma: +1 critpath: +1

Works for me.

karma: +1 critpath: +1 #1701072: +1

I can ssh in and ssh out

karma: +1 critpath: +1

Works fine

karma: +1

lgtm

karma: +1

Works fine, no regressions found

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+10
stable threshold: 10
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 months ago
in testing 2 months ago
in stable a month ago

Related Bugs 6

00 #1666119 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output
00 #1666121 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output [fedora-all]
00 #1666127 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client
00 #1666128 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client [fedora-all]
00 #1687230 When using ssh-agent with ecdsa-sha2-nistp384 key on a security key (Yubikey 5 NC in this case) ssh-agent fails to sign and then seg faults.
0+1 #1701072 openssh-8.0p1 is available

Automated Test Results

Test Cases

0+2 Test Case OpenSSH