-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 21 May 2023 18:22:05 +0000
Source: libssh
Binary: libssh-4 libssh-4-dbgsym libssh-dev libssh-gcrypt-4 libssh-gcrypt-4-dbgsym libssh-gcrypt-dev
Architecture: mipsel
Version: 0.9.7-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-03) <buildd_mips64el-mipsel-osuosl-03@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description:
 libssh-4   - tiny C SSH library (OpenSSL flavor)
 libssh-dev - tiny C SSH library - Development files (OpenSSL flavor)
 libssh-gcrypt-4 - tiny C SSH library (gcrypt flavor)
 libssh-gcrypt-dev - tiny C SSH library - Development files (gcrypt flavor)
Closes: 1035832
Changes:
 libssh (0.9.7-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream security microrelease:
     - CVE-2023-1667: Authenticated remote DoS.
       Fix authenticated remote DoS through potential NULL dereference during
       rekeying with algorithm guessing
       https://www.libssh.org/security/advisories/CVE-2023-1667.txt
     - CVE-2023-2283: Client authentication bypass.
       Fix client authentication bypass in pki_verify_data_signature() in
       low-memory conditions with OpenSSL backend; gcrypt backend is not
       affected.
       https://www.libssh.org/security/advisories/CVE-2023-2283.txt
       (Closes: #1035832)
   * Drop 000* patches which were backported from the upstream stable 0.9
     branch, now included in this release. Unfuzz 2004-install-static-lib.patch.
Checksums-Sha1:
 17dfcf0385ba20fcaac3704b381f951e65a3009f 468748 libssh-4-dbgsym_0.9.7-0+deb11u1_mipsel.deb
 1899a4201f0b423ce9cb6db1785b6bcae05e7d40 166084 libssh-4_0.9.7-0+deb11u1_mipsel.deb
 ce53d2126375b8e734afbcdbdf75b46220b7deda 252996 libssh-dev_0.9.7-0+deb11u1_mipsel.deb
 9baedd9cc25534eb2c47a41d5e93ed855b41ed51 511296 libssh-gcrypt-4-dbgsym_0.9.7-0+deb11u1_mipsel.deb
 534a4c1f3ff9c19d90f4ebcd6d02d3051ba6ec6c 198512 libssh-gcrypt-4_0.9.7-0+deb11u1_mipsel.deb
 f0a51accbee03c8ab941da9f673a118a70978ddc 288924 libssh-gcrypt-dev_0.9.7-0+deb11u1_mipsel.deb
 65ee8d7c0991ca4bfb24ee017a7d504dbfc473e5 9316 libssh_0.9.7-0+deb11u1_mipsel-buildd.buildinfo
Checksums-Sha256:
 6bc5ff6c66bcb0af027fc27afb1981696fb97b19704cea04ac0b5a49bdbfd274 468748 libssh-4-dbgsym_0.9.7-0+deb11u1_mipsel.deb
 89dc3bed263fbac9d1c8857043c501d929183414d95d8166f9ba69172a05d096 166084 libssh-4_0.9.7-0+deb11u1_mipsel.deb
 a47acbe5da97bfc9ae82828c9363c1df275329a98bedebee7faf4df3d81a5176 252996 libssh-dev_0.9.7-0+deb11u1_mipsel.deb
 13c865411a81d67cc98da08be5f407ba188edd9e3251829152a24d0881ca97c2 511296 libssh-gcrypt-4-dbgsym_0.9.7-0+deb11u1_mipsel.deb
 bf651543148b0ba531927c1fc28afd10e71b083b88c29a4d53ba8fe3f3322686 198512 libssh-gcrypt-4_0.9.7-0+deb11u1_mipsel.deb
 8ba7d6b3724f30817071f9c40995a29091ab83e7c657caf5b27f35ad1fc1c00c 288924 libssh-gcrypt-dev_0.9.7-0+deb11u1_mipsel.deb
 f9eec5f5358a72e75cfa1a1b297775cf36981cf738021a83884635260cc863f5 9316 libssh_0.9.7-0+deb11u1_mipsel-buildd.buildinfo
Files:
 5b8f05f72209a47bd8c2d2f9289c66f7 468748 debug optional libssh-4-dbgsym_0.9.7-0+deb11u1_mipsel.deb
 9f0e144c869036e97d485e890315494c 166084 libs optional libssh-4_0.9.7-0+deb11u1_mipsel.deb
 bf4bdf6b373dc93db01dcb4c16612dd9 252996 libdevel optional libssh-dev_0.9.7-0+deb11u1_mipsel.deb
 378c75d17059d9f91e9a7656af2be942 511296 debug optional libssh-gcrypt-4-dbgsym_0.9.7-0+deb11u1_mipsel.deb
 2115bf7af3931e62ce1bdf233153669a 198512 libs optional libssh-gcrypt-4_0.9.7-0+deb11u1_mipsel.deb
 f7b9b01fda015b18709d7b580fc04b1e 288924 libdevel optional libssh-gcrypt-dev_0.9.7-0+deb11u1_mipsel.deb
 3b2c7a156dfdf43a45276f6ba6ee96c3 9316 libs optional libssh_0.9.7-0+deb11u1_mipsel-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=dTgg
-----END PGP SIGNATURE-----