Skip to content

@dm0- dm0- released this Mar 26, 2019 · 8 commits to master since this release

Security fixes:

  • Fix OpenSSH scp allowing remote servers to change target directory permissions (CVE-2018-20685)
  • Fix OpenSSH outputting ANSI control codes from remote servers (CVE-2019-6109, CVE-2019-6110)
  • Fix OpenSSH scp allowing remote servers to overwrite arbitrary files (CVE-2019-6111)
  • Fix OpenSSL side-channel timing attack (CVE-2018-5407)
  • Fix OpenSSL padding oracle attack in misbehaving applications (CVE-2019-1559)
  • Fix ntp ntpd denial of service by authenticated user (CVE-2019-8936)
  • Fix ntp buffer overflow in ntpq and ntpdc (CVE-2018-12327)

Bug fixes:

  • Fix systemd presets incorrectly handling escaped unit names (#2569)

Updates:

Assets 2
You can’t perform that action at this time.