-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 28 Aug 2021 13:52:11 +0200
Source: libssh
Binary: libssh-4 libssh-4-dbgsym libssh-dev libssh-gcrypt-4 libssh-gcrypt-4-dbgsym libssh-gcrypt-dev
Architecture: armhf
Version: 0.9.5-1+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: arm Build Daemon (arm-arm-01) <buildd_arm64-arm-arm-01@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description:
 libssh-4   - tiny C SSH library (OpenSSL flavor)
 libssh-dev - tiny C SSH library - Development files (OpenSSL flavor)
 libssh-gcrypt-4 - tiny C SSH library (gcrypt flavor)
 libssh-gcrypt-dev - tiny C SSH library - Development files (gcrypt flavor)
Closes: 993046
Changes:
 libssh (0.9.5-1+deb11u1) bullseye-security; urgency=high
 .
   * dh-gex: Avoid memory leaks.
     Add 0001-dh-gex-Avoid-memory-leaks.patch: Backported from upstream 0.9.6
     release.
   * Fix handshake bug with AEAD ciphers and no HMAC overlap.
     Add 0002-Fix-handshake-bug-with-AEAD-ciphers-and-no-HMAC-over.patch and
     0003-Add-initial-server-algorithm-test-for-no-HMAC-overla.patch:
     Backport fix and test from upstream 0.9.6 release.
   * Create a separate length for session_id.
     Add 0004-CVE-2021-3634-Create-a-separate-length-for-session_i.patch and
     0005-tests-Simple-reproducer-for-rekeying-with-different-.patch:
     Backport fix and test from upstream 0.9.6 release.
     CVE-2021-3634 (Closes: #993046)
Checksums-Sha1:
 9d72e05cbbce81ef32e02dced1587b25c8ef9311 464732 libssh-4-dbgsym_0.9.5-1+deb11u1_armhf.deb
 845be7d9b3b29fe05f554cda7f167fa4342bca4e 162536 libssh-4_0.9.5-1+deb11u1_armhf.deb
 1f27d98121cdb82c8d15bab383cedb8bd794c10d 214948 libssh-dev_0.9.5-1+deb11u1_armhf.deb
 015738b2adee637449a2aa7f12be70c7184db31f 504964 libssh-gcrypt-4-dbgsym_0.9.5-1+deb11u1_armhf.deb
 7e6e11c05e8d1d94fefc05dd46626c6783e10507 192628 libssh-gcrypt-4_0.9.5-1+deb11u1_armhf.deb
 47d8d3cb0a07cb92ae189fc7db4fd258b1c0028d 248844 libssh-gcrypt-dev_0.9.5-1+deb11u1_armhf.deb
 52101fc1e255a75bc93db2f6e85ec73e6b1bd861 8798 libssh_0.9.5-1+deb11u1_armhf-buildd.buildinfo
Checksums-Sha256:
 80899608dbfabbbaee5a595f9ae6059ac5f8971b599158838eeed748eb93e070 464732 libssh-4-dbgsym_0.9.5-1+deb11u1_armhf.deb
 352e55b6a28fb7ad2e0c54a7bbc6209e5bc440d5661c182e7bb85ecf3f576d3f 162536 libssh-4_0.9.5-1+deb11u1_armhf.deb
 b96338a318430bf10c123440ce9ae984d7603e408c93e43eec731a60f564f60a 214948 libssh-dev_0.9.5-1+deb11u1_armhf.deb
 9f885ad8199f33635adaecd3a2e1bce59bbb36f53565d447199cc244fe296211 504964 libssh-gcrypt-4-dbgsym_0.9.5-1+deb11u1_armhf.deb
 3190ca208b68bc54f9b8197349a062e74afd42c99fbb68e05e80b03706783711 192628 libssh-gcrypt-4_0.9.5-1+deb11u1_armhf.deb
 0c276952f90c0a93b88f0199df1590e3701467d9a7aa199ac7e1e9b087eb5513 248844 libssh-gcrypt-dev_0.9.5-1+deb11u1_armhf.deb
 10169b6a3e8bac92a057896906360184f4ac3bd2f287ed6568349153094d1458 8798 libssh_0.9.5-1+deb11u1_armhf-buildd.buildinfo
Files:
 c1500715339e207f948e2363f1df4bcd 464732 debug optional libssh-4-dbgsym_0.9.5-1+deb11u1_armhf.deb
 7db2be789699e2d952e4bd494de97c8b 162536 libs optional libssh-4_0.9.5-1+deb11u1_armhf.deb
 ebdaccafe5771c634a3ebc424ce2cff4 214948 libdevel optional libssh-dev_0.9.5-1+deb11u1_armhf.deb
 02e26fa21057d12767f81f44b958d49e 504964 debug optional libssh-gcrypt-4-dbgsym_0.9.5-1+deb11u1_armhf.deb
 ad2990695661a67f22064c1e49d9d4ad 192628 libs optional libssh-gcrypt-4_0.9.5-1+deb11u1_armhf.deb
 58c791ee209b5c4808699124392e88c8 248844 libdevel optional libssh-gcrypt-dev_0.9.5-1+deb11u1_armhf.deb
 cdd97eba9444303d57a228e8f9f2ad18 8798 libs optional libssh_0.9.5-1+deb11u1_armhf-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEOrosGNnYCm3/302DbdsJ0BtdQQEFAmEsWigACgkQbdsJ0Btd
QQFe6w/+LlWINabYU44rDRH1obkwRgpL2t38f39awlHRrGq294MCaUWl91DSbOiB
pY/FsgwxdMYLTFOGf2LuH7UP0ILMNGxp3io1froZsvzf+LwYx6Ac4gPA6jMloNOz
RX/uiZ7Yp+7EILUnEq9wot+dYJRVvd17M1ZFyna+DR67GHlMPU+5cNW7FmACkb45
UJ40S8etymP7xD1NtuIXWgpHKSMe+HmTLxKFTK7d64d9sQ2uj7/FtLUR67IvzKTU
6xQbwEoc9oMCWe+8I8E7sw8uwmsbgQDUjLGBRBxykwEeA31Mpfg7vNwdGDtd7czF
aBaZNhhFKOO68wxSKvqeo4tR5f/oxZYyO+uspHu/xF4ubrezDBC7nlZ8KgDWOnK4
gHvuI6Jkw/KfCjvAcc9dS+YVarBsmdPLjR8PgUEy4p5ZUQIj5SezFRhCMOhYughq
MxSlup6YsIqrT7fFCy6BAsxr4O4lI3XPmj27Qwhq/7faJ8VM40nTqBTkz6clIWJi
kxrF0uo0MjM0yuGzny056tSThUuEKzCcDZflhXVDoiPmtDBnlhl1imZh+Y5ydee5
U/t//vNyUOLxjiey62030Oob7HkRU38i01/ibK0pBIAsgHigLVHpta7h/qUdQVyP
IhTJJUP4u+nHnduu8QiSqZGEt3a5ZZgW3t0aYJAw8EsWVhorjhk=
=T9GW
-----END PGP SIGNATURE-----