-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 28 Aug 2021 13:52:11 +0200
Source: libssh
Binary: libssh-4 libssh-4-dbgsym libssh-dev libssh-gcrypt-4 libssh-gcrypt-4-dbgsym libssh-gcrypt-dev
Architecture: armel
Version: 0.9.5-1+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: armhf / armel Build Daemon (hoiby) <buildd_armhf-hoiby@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description:
 libssh-4   - tiny C SSH library (OpenSSL flavor)
 libssh-dev - tiny C SSH library - Development files (OpenSSL flavor)
 libssh-gcrypt-4 - tiny C SSH library (gcrypt flavor)
 libssh-gcrypt-dev - tiny C SSH library - Development files (gcrypt flavor)
Closes: 993046
Changes:
 libssh (0.9.5-1+deb11u1) bullseye-security; urgency=high
 .
   * dh-gex: Avoid memory leaks.
     Add 0001-dh-gex-Avoid-memory-leaks.patch: Backported from upstream 0.9.6
     release.
   * Fix handshake bug with AEAD ciphers and no HMAC overlap.
     Add 0002-Fix-handshake-bug-with-AEAD-ciphers-and-no-HMAC-over.patch and
     0003-Add-initial-server-algorithm-test-for-no-HMAC-overla.patch:
     Backport fix and test from upstream 0.9.6 release.
   * Create a separate length for session_id.
     Add 0004-CVE-2021-3634-Create-a-separate-length-for-session_i.patch and
     0005-tests-Simple-reproducer-for-rekeying-with-different-.patch:
     Backport fix and test from upstream 0.9.6 release.
     CVE-2021-3634 (Closes: #993046)
Checksums-Sha1:
 5a7a21e0eb5b81e90f4a2143088645b1878c24b4 455324 libssh-4-dbgsym_0.9.5-1+deb11u1_armel.deb
 75de0ca7a8e2c15a5a59ba407290116adb6bf660 157576 libssh-4_0.9.5-1+deb11u1_armel.deb
 5dcf4eecb3dee6f2189739f830a660b04e6988bf 211748 libssh-dev_0.9.5-1+deb11u1_armel.deb
 19352a2faf0b3fc1d03f970c82bdf47b4a6fcc33 493892 libssh-gcrypt-4-dbgsym_0.9.5-1+deb11u1_armel.deb
 afd3551e050a44216a6f1e357846b32732acfb04 187404 libssh-gcrypt-4_0.9.5-1+deb11u1_armel.deb
 78d303c313ee72e74833c86d2a96220e70191ddb 245164 libssh-gcrypt-dev_0.9.5-1+deb11u1_armel.deb
 84305895ef2a32a2c7e10827863c79657f3a7dd0 8796 libssh_0.9.5-1+deb11u1_armel-buildd.buildinfo
Checksums-Sha256:
 9888faa0d6b72626f107c0294ded7f1507e58d58bfb25cdaaf3a6eb9fac45a11 455324 libssh-4-dbgsym_0.9.5-1+deb11u1_armel.deb
 38f3fafd26d77933d41d7668e774214db0497557ec0057f4e68b9d102a208b8a 157576 libssh-4_0.9.5-1+deb11u1_armel.deb
 92726bb378da7557d5f59dcbe3c3b7a30622f7457f8c94ad849c15238e225286 211748 libssh-dev_0.9.5-1+deb11u1_armel.deb
 dfa0737dc62ba450b053671648cf499d736be54bc83d352464877f80466a4da8 493892 libssh-gcrypt-4-dbgsym_0.9.5-1+deb11u1_armel.deb
 de01a3f98bd556dd4cadb38e76cd50870cc2af73fdf6fa0098151ad4993890e1 187404 libssh-gcrypt-4_0.9.5-1+deb11u1_armel.deb
 9afa69dc0493e57ebdd0efc04dc583c00f06d90369c492e72294f0cc3dd6d6a4 245164 libssh-gcrypt-dev_0.9.5-1+deb11u1_armel.deb
 f9c0ba1d6b9972c632d120b6953b3fc32ad88dc76b96cba4db754ae80d787f47 8796 libssh_0.9.5-1+deb11u1_armel-buildd.buildinfo
Files:
 ed1d8e1ab74ce6bc2cdcd427e1e2bb2e 455324 debug optional libssh-4-dbgsym_0.9.5-1+deb11u1_armel.deb
 99256868c58c2069faae5f0ebd4bf872 157576 libs optional libssh-4_0.9.5-1+deb11u1_armel.deb
 25c6ec0f55b089b652176411fc2bc4e4 211748 libdevel optional libssh-dev_0.9.5-1+deb11u1_armel.deb
 feef09346a1361bce4ef66bc825637e1 493892 debug optional libssh-gcrypt-4-dbgsym_0.9.5-1+deb11u1_armel.deb
 fb2362012c5928260e58c745f4fc1355 187404 libs optional libssh-gcrypt-4_0.9.5-1+deb11u1_armel.deb
 768d0a551a186b9c6272e84cd2f5a1fb 245164 libdevel optional libssh-gcrypt-dev_0.9.5-1+deb11u1_armel.deb
 750a6237a0af121f864421fa6f96f9c4 8796 libs optional libssh_0.9.5-1+deb11u1_armel-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=vH62
-----END PGP SIGNATURE-----