1. Forum
  2. Usenet
  3. LINUX.DEBIAN.CHANGES

  • Accepted cockpit 287.1-0+deb12u3 (source) into proposed-updates

    From Debian FTP Masters@21:1/5 to All on Wed Aug 7 07:40:01 2024
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    Format: 1.8
    Date: Fri, 05 Jul 2024 06:15:50 +0200
    Source: cockpit
    Architecture: source
    Version: 287.1-0+deb12u3
    Distribution: bookworm
    Urgency: medium
    Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org>
    Changed-By: Martin Pitt <mpitt@debian.org>
    Changes:
    cockpit (287.1-0+deb12u3) bookworm; urgency=medium
    .
    * Add 0002-pam-ssh-add-Fix-insecure-killing-of-session-ssh-agen.patch:
    CockpitΓÇÖs pam_ssh_add module had a vulnerability when user_readenv is
    enabled in /etc/pam.d/cockpit (which is the default on Debian). This could
    cause a Denial of Service if a locally-authenticated user crafted a
    ~/.pam_environment file: it would kill an arbitrary process on the
    system with root privileges when logging out of a Cockpit session.
    Patch cherry-picked from upstream (08965365ac311f906a5).
    [CVE-2024-6126]
    Checksums-Sha1:
    f99e7ed0e5a7f5d6a0a89d14803c261ca5cc18b9 3048 cockpit_287.1-0+deb12u3.dsc
    ea766ae831a83ec0b12c58df18d5574401083cca 22132 cockpit_287.1-0+deb12u3.debian.tar.xz
    be5890f48a6fcc27165a60f2290c0cea9a50cb7d 6386 cockpit_287.1-0+deb12u3_source.buildinfo
    Checksums-Sha256:
    4b39e8ad3e57164304bf6a696b20e5d6bf98f1531959b3e5aabcf71d33bbfc09 3048 cockpit_287.1-0+deb12u3.dsc
    af323152c74afb6992914c8896177319c27b67fab4a2b39e522067371450d2e5 22132 cockpit_287.1-0+deb12u3.debian.tar.xz
    f0f75c701043179070401a7a31384a7191afee7c1154673a11d84e0b81be3683 6386 cockpit_287.1-0+deb12u3_source.buildinfo
    Files:
    3451794d3f8374482096051d9cc5bbc7 3048 admin optional cockpit_287.1-0+deb12u3.dsc
    3cdcf132e913a82ba664e2c8154c202e 22132 admin optional cockpit_287.1-0+deb12u3.debian.tar.xz
    8ff586a10a54305d9640d74e42700745 6386 admin optional cockpit_287.1-0+deb12u3_source.buildinfo

    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEbEuHi35jHxYFV8PN7nvd5LhrVxMFAmaLjfUACgkQ7nvd5Lhr VxNBJRAAjg7ilutBenkplE4wXwpDwv3B4F/etHPIV1ChLnRfZMQbd2Y+TofQ7qRB hGn/ZY58+t6SExNg5zgOfMo+tcSWKXuOfU88c8kDgfwigWQaQwMdGfl66FEguT0L 2sM5VYj+9THaHfbU1aUPqKTPmn0U8eSNRRLh7jAytfFadPLXEBN6Dj4Z1apAwSvW uFiNrnBK/IBxU7EF0f2RYSgjkV1Gpt5KZ3/SHn/YkUBdrHb/d/o1s2dt6ZrrsHmx n4rvCJZAG95PZ0CLLjyxcgEpt3oastL0T5a4NMWSUS+7nSZ7P2MVdsIoAodhg1OI Uz625SdxlpJx6lgB2JFU1XTJxggtfmqHQKdPavyCwWQc04bhQhWKJI7e7RhmxUut um16OEl9g8KagmPArZeLKTX0Fwnov6r76oIlg9cLbxSnYH9KTQbCyMLkBbk7Sm3y b4P7cBLbaZEfh6ArbwRB9eF+inwknfpxZvujAsS2wH0EIkvixU9ImjeB/ph6zq0g M/yVkGGt+mTOgUxEw51Q7MF9CsbNrkq7fr9hn7JUNfGkX+arbc6eFmUf/KSpHoBD cHdA0nT3J75rU0jPbSqz/bdY/A6JfqZGlYkbpwbKTkTZWYHn9GiaEdTfV57ctoa6 NuKuuoJCE+z3m2/OyCvbOnaL9Q+tx1me2stN7Xk14wR4C/dv03Q=
    =u8kx
    -----END PGP SIGNATURE-----


    --==============ë83965593657009792=Content-Type: application/pgp-signature

    -----BEGIN PGP SIGNATURE-----

    iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCZrMG7wAKCRCb9qggYcy5 IQ+MAP4+nD2uK9tv//U768uFrjsi4S2alFGHTPDGrYKBdSXaGAD/dJdA8QFonTJY FfD1ncLcZFVcVO5wni34zC2W/gfjhgo=MNw5
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)