FEDORA-2019-0f4190cdb0 created by jjelen 11 months ago for Fedora 30
stable

New upstream release with significantly reworked PKCS#11 support, GSSAPI key exchange and several fixes for CVE-2019-6111 and CVE-2019-6109

How to install

sudo dnf upgrade --advisory=FEDORA-2019-0f4190cdb0

This update has been submitted for testing by jjelen.

11 months ago

This update has been pushed to testing.

11 months ago
User Icon cserpentis commented & provided feedback 11 months ago
karma

works for me

User Icon atim provided feedback 11 months ago
karma
Test Case OpenSSH
User Icon sikevux commented & provided feedback 10 months ago
karma

LGTM

Test Case OpenSSH
User Icon bojan commented & provided feedback 10 months ago
karma

Works here.

User Icon pcw commented & provided feedback 10 months ago
karma

Works for me.

BZ#1701072 openssh-8.0p1 is available
User Icon pwalter commented & provided feedback 10 months ago
karma

Works

User Icon kparal commented & provided feedback 10 months ago
karma

I can ssh in and ssh out

User Icon frantisekz commented & provided feedback 10 months ago
karma

Works fine

User Icon hhlp commented & provided feedback 10 months ago
karma

lgtm

User Icon renault commented & provided feedback 10 months ago
karma

Works fine, no regressions found

This update has been submitted for batched by bodhi.

10 months ago

This update has been submitted for stable by bodhi.

10 months ago

This update has been pushed to stable.

10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
10
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
10
Dates
submitted
11 months ago
in testing
11 months ago
in stable
10 months ago
BZ#1666119 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output
0
0
BZ#1666121 CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output [fedora-all]
0
0
BZ#1666127 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client
0
0
BZ#1666128 CVE-2019-6111 openssh: Improper validation of object names allows malicious server to overwrite files via scp client [fedora-all]
0
0
BZ#1687230 When using ssh-agent with ecdsa-sha2-nistp384 key on a security key (Yubikey 5 NC in this case) ssh-agent fails to sign and then seg faults.
0
0
BZ#1701072 openssh-8.0p1 is available
0
1

Automated Test Results

Test Cases

0 2 Test Case OpenSSH