-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 21 May 2023 18:22:05 +0000
Source: libssh
Binary: libssh-4 libssh-4-dbgsym libssh-dev libssh-gcrypt-4 libssh-gcrypt-4-dbgsym libssh-gcrypt-dev
Architecture: mips64el
Version: 0.9.7-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-aql-03) <buildd_mips64el-mipsel-aql-03@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description:
 libssh-4   - tiny C SSH library (OpenSSL flavor)
 libssh-dev - tiny C SSH library - Development files (OpenSSL flavor)
 libssh-gcrypt-4 - tiny C SSH library (gcrypt flavor)
 libssh-gcrypt-dev - tiny C SSH library - Development files (gcrypt flavor)
Closes: 1035832
Changes:
 libssh (0.9.7-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream security microrelease:
     - CVE-2023-1667: Authenticated remote DoS.
       Fix authenticated remote DoS through potential NULL dereference during
       rekeying with algorithm guessing
       https://www.libssh.org/security/advisories/CVE-2023-1667.txt
     - CVE-2023-2283: Client authentication bypass.
       Fix client authentication bypass in pki_verify_data_signature() in
       low-memory conditions with OpenSSL backend; gcrypt backend is not
       affected.
       https://www.libssh.org/security/advisories/CVE-2023-2283.txt
       (Closes: #1035832)
   * Drop 000* patches which were backported from the upstream stable 0.9
     branch, now included in this release. Unfuzz 2004-install-static-lib.patch.
Checksums-Sha1:
 f1bcc0d08ce5cee654a5fc615479e14b44b2721a 501236 libssh-4-dbgsym_0.9.7-0+deb11u1_mips64el.deb
 f6807b81380b156aa10d2a8e4e70d7b60438c1dc 163852 libssh-4_0.9.7-0+deb11u1_mips64el.deb
 91c09cde55dd11f5236c4d6f62754412a1c459d0 253236 libssh-dev_0.9.7-0+deb11u1_mips64el.deb
 38ec79e92be7742d04568e013dc3f328e0208004 543676 libssh-gcrypt-4-dbgsym_0.9.7-0+deb11u1_mips64el.deb
 19a1ff0cdc1ded84be6b257b7bf17a88b63f7a31 196100 libssh-gcrypt-4_0.9.7-0+deb11u1_mips64el.deb
 455aa9b928066113d092c9b29f5b57b2c1d588c0 289928 libssh-gcrypt-dev_0.9.7-0+deb11u1_mips64el.deb
 29920c91aa28fe8a344acaff45870bd6c2b1c219 9341 libssh_0.9.7-0+deb11u1_mips64el-buildd.buildinfo
Checksums-Sha256:
 0214ae8239cd3432682253d03c5d982b1e6823e6aafb2b7b6e20b6a0c4656d34 501236 libssh-4-dbgsym_0.9.7-0+deb11u1_mips64el.deb
 2a25b68d7d9db1f6e81e33b01921132c9efa14d317b4c121c4c9a6d55c33d309 163852 libssh-4_0.9.7-0+deb11u1_mips64el.deb
 c6c6b760ecd4cba350bc1640988d624d0b9503905c12b938e362a6b01c336c42 253236 libssh-dev_0.9.7-0+deb11u1_mips64el.deb
 536fde2e485af41c39190bb247f5c7a8d0eed4f57fd9d99617c10b80e1eb003f 543676 libssh-gcrypt-4-dbgsym_0.9.7-0+deb11u1_mips64el.deb
 72b60d9faf25188f6e5c1086ad499a13902d84b558fc951da4a846c96fa39627 196100 libssh-gcrypt-4_0.9.7-0+deb11u1_mips64el.deb
 6de6154215a29e30b437d6b086c9ad867df16178da475c9e1a831b71563abfd0 289928 libssh-gcrypt-dev_0.9.7-0+deb11u1_mips64el.deb
 f1ada90a618670244f4f7b925c955ab6a67a102aaae70b6054c33f0fe4b6c0c3 9341 libssh_0.9.7-0+deb11u1_mips64el-buildd.buildinfo
Files:
 ba5b8aaaf3c9607fc560e7107a83d3ba 501236 debug optional libssh-4-dbgsym_0.9.7-0+deb11u1_mips64el.deb
 4b631e54f4d207108167e84ff38e81b0 163852 libs optional libssh-4_0.9.7-0+deb11u1_mips64el.deb
 498319450720500d46125dcd1f84aa1d 253236 libdevel optional libssh-dev_0.9.7-0+deb11u1_mips64el.deb
 0b1e8c464d6bd429f21e66838b3a3b02 543676 debug optional libssh-gcrypt-4-dbgsym_0.9.7-0+deb11u1_mips64el.deb
 087038ab8c61934f902de4434d6217e5 196100 libs optional libssh-gcrypt-4_0.9.7-0+deb11u1_mips64el.deb
 639835b3e49b7e307aa9ddbaf2858d73 289928 libdevel optional libssh-gcrypt-dev_0.9.7-0+deb11u1_mips64el.deb
 c05ab40b8ea040c2cdb7d12765830e3e 9341 libs optional libssh_0.9.7-0+deb11u1_mips64el-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=yx6K
-----END PGP SIGNATURE-----