No, 2.3.4-4+deb8u2ubuntu0.16.04.1 release didn't fix the issue. 2.3.4-4+deb8u2ubuntu0.16.04.1 is mainly targeted for downloading multiple files using '*' based on the issue raised by https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921655.
In our case, we don't use scp commands directly but use libssh2 client library to do scp. I have attached the example libssh2 code to repro the issue. ** Bug watch added: Debian Bug tracker #921655 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921655 ** Attachment added: "scp.c" https://bugs.launchpad.net/ubuntu/+source/libssh2/+bug/1815741/+attachment/5238438/+files/scp.c -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1815741 Title: Probable regression after rssh security update To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libssh2/+bug/1815741/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
