FEDORA-2019-0f4190cdb0

security update in Fedora 30 for openssh

Status: stable 3 months ago

New upstream release with significantly reworked PKCS#11 support, GSSAPI key exchange and several fixes for CVE-2019-6111 and CVE-2019-6109

Comments 15

This update has been submitted for testing by jjelen.

This update has been pushed to testing.

works for me

karma: +1
karma: +1 critpath: +1 OpenSSH: +1

LGTM

karma: +1 critpath: +1 OpenSSH: +1

Works here.

karma: +1 critpath: +1

Works for me.

karma: +1 critpath: +1 #1701072: +1

I can ssh in and ssh out

karma: +1 critpath: +1

Works fine

karma: +1

lgtm

karma: +1

Works fine, no regressions found

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+10
stable threshold: 10
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 4 months ago
in testing 4 months ago
in stable 3 months ago

Related Bugs 6

00 #1666119 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output
00 #1666121 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output [fedora-all]
00 #1666127 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client
00 #1666128 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client [fedora-all]
00 #1687230 When using ssh-agent with ecdsa-sha2-nistp384 key on a security key (Yubikey 5 NC in this case) ssh-agent fails to sign and then seg faults.
0+1 #1701072 openssh-8.0p1 is available

Automated Test Results

Test Cases

0+2 Test Case OpenSSH