-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 21 May 2023 18:22:05 +0000
Source: libssh
Binary: libssh-doc
Architecture: all
Version: 0.9.7-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description:
 libssh-doc - tiny C SSH library - Documentation files
Closes: 1035832
Changes:
 libssh (0.9.7-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream security microrelease:
     - CVE-2023-1667: Authenticated remote DoS.
       Fix authenticated remote DoS through potential NULL dereference during
       rekeying with algorithm guessing
       https://www.libssh.org/security/advisories/CVE-2023-1667.txt
     - CVE-2023-2283: Client authentication bypass.
       Fix client authentication bypass in pki_verify_data_signature() in
       low-memory conditions with OpenSSL backend; gcrypt backend is not
       affected.
       https://www.libssh.org/security/advisories/CVE-2023-2283.txt
       (Closes: #1035832)
   * Drop 000* patches which were backported from the upstream stable 0.9
     branch, now included in this release. Unfuzz 2004-install-static-lib.patch.
Checksums-Sha1:
 05e8f8c242befdea6761b0333167bceec9b71216 9284968 libssh-doc_0.9.7-0+deb11u1_all.deb
 eb0eb891d47302a6ab11c61498240d827bf97fc5 9475 libssh_0.9.7-0+deb11u1_all-buildd.buildinfo
Checksums-Sha256:
 ab0ef9c199155a37ab6ff07eb5a0650a4983d04059b56e4b8a6c5a007273d027 9284968 libssh-doc_0.9.7-0+deb11u1_all.deb
 b03783ff4573e44a9e09eff97aec2ff1abb5165d7318266800d3b6a314991608 9475 libssh_0.9.7-0+deb11u1_all-buildd.buildinfo
Files:
 90a3d3eb017ee97b636b30373159ff56 9284968 doc optional libssh-doc_0.9.7-0+deb11u1_all.deb
 abbfffb33300b93616f761601badfdcb 9475 libs optional libssh_0.9.7-0+deb11u1_all-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=2aaK
-----END PGP SIGNATURE-----