Re: latest openssh for wheezy

2017-08-10 Thread Markus Koschany
On 09/08/17 04:45, Arto Jantunen wrote: Adam Weremczuk writes: Is there a better place / way to verify the latest Debian changelogs online? You can use the security tracker to search for either the vulnerabilities, or packages:

Re: latest openssh for wheezy

2017-08-09 Thread Adam Weremczuk
Hi Salvatore, Thank you for that very useful link. The only outstanding concern from my list is: ID: OSVDB 14400 THREAT: The SSH server running on the remote host is affected by an information disclosure vulnerability. IMPACT: According to its banner, the version of OpenSSH running on the

Re: latest openssh for wheezy

2017-08-09 Thread Arto Jantunen
Adam Weremczuk writes: > Is there a better place / way to verify the latest Debian changelogs > online? You can use the security tracker to search for either the vulnerabilities, or packages: https://security-tracker.debian.org/tracker/ It lists a bunch of open ones for

Re: latest openssh for wheezy

2017-08-09 Thread Salvatore Bonaccorso
Hi On Wed, Aug 09, 2017 at 09:21:42AM +0100, Adam Weremczuk wrote: > Hello, > > Could somebody confirm the status of the following: > > CVE-2014-1692 > CVE-2014-2532 > CVE-2015-5352 > CVE-2015-5600 > CVE-2015-6563 > CVE-2015-6564 > CVE-2015-6565 > CVE-2016-10009 > CVE-2016-10010 >

latest openssh for wheezy

2017-08-09 Thread Adam Weremczuk
Hello, Could somebody confirm the status of the following: CVE-2014-1692 CVE-2014-2532 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2015-6565 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 OSVDB-144000 in 6.0p1-4+deb7u6 ? I've searched for references in