Debian Patches
Status for python-asyncssh/2.10.1-2+deb12u2
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| CVE-2023-48795.patch | commit 0bc73254f41acb140187e0c89606311f88de5b7b Implement "strict kex" support to harden AsyncSSH against Terrapin Attack This commit implements "strict kex" support and other countermeasures to protect against the Terrapin Attack described in CVE-2023-48795. Thanks once again go to Fabian Bumer, Marcus Brinkmann, and Jrg Schwenk for identifying and reporting this vulnerability and providing detailed analysis and suggestions about proposed fixes. =================================================================== |
Ron Frederick <ronf@timeheart.net> | no | 2023-12-18 | ||
| CVE-2023-46445-and-CVE-2023-46446.patch | [PATCH] Harden AsyncSSH state machine against message injection during handshake This commit puts additional restrictions on when messages are accepted during the SSH handshake to avoid message injection attacks from a rogue client or server. More detailed information will be available in CVE-2023-46445 and CVE-2023-46446, to be published shortly. Thanks go to Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk for identifying and reporting these vulnerabilities and providing detailed analysis and suggestions for how to protect against them, as well as review comments on the proposed fix. |
Ron Frederick <ronf@timeheart.net> | yes | upstream | https://github.com/ronf/asyncssh/commit/83e43f5ea3470a8617fc388c72b062c7136efd7e | 2023-11-08 |
| sphinx-use-default-theme.patch | make Sphinx use default theme The "classic" theme is introduced in Sphinx 1.3 and not available in Sphinx 1.2. |
SVN-Git Migration <python-modules-team@lists.alioth.debian.org> | not-needed | 2015-10-08 | ||
| 0002-skip-tests-requiring-network-access.patch | skip tests requiring network access | Vincent Bernat <vincent@bernat.im> | no | 2016-01-03 | ||
| 0003-Revert-fido-0.9.2-support.patch | Revert fido 0.9.2 support Not yet in Debian, we're still on 0.9.1 This reverts: 7a4597953a631ee5091ac1b6e384e32d4f018a82 |
Stefano Rivera <stefanor@debian.org> | no | 2022-05-18 | ||
| 0004-Handle-ConnectionRefusedError-when-connecting-to-223.patch | Handle ConnectionRefusedError when connecting to 223.255.255.254 If the tests are run from an environment with a firewall, they may be refused instead of timing out. Just skip the test. |
Stefano Rivera <stefanor@debian.org> | yes | 2022-05-18 | ||
| mock-pathlib-expanduser.patch | [PATCH] Also patch pathlib expanduser also affects `pathlib.path.expanduser()` which is invoked by the config parser for expanding `~/.ssh`. |
Georg Sauthoff <mail@gms.tf> | no | 2022-07-09 |
All known versions for source package 'python-asyncssh'
- 2.21.0-1 (forky, sid)
- 2.20.0-1 (trixie)
- 2.10.1-2+deb12u2 (bookworm)
- 2.10.1-2+deb12u1 (bookworm-security)