OXIESEC PANEL

Name	Size	Modified	Perms
📁 ..	-	04/29/2025 04:07:52 PM	rwxr-xr-x
📄 ChangeLog	7.24 KB	04/29/2025 04:07:29 PM	rw-r--r--
📁 adduser	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 apparmor	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 avahi-daemon	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 base-files	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 base-passwd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 bash	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 bash-completion	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 bsdutils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 bzip2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 ca-certificates	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 cloud-guest-utils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 cloud-init	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 console-conf	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 coreutils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 cracklib-runtime	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 cryptsetup	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 cryptsetup-bin	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 dash	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 dbus	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 dbus-user-session	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 debianutils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 diffutils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 distro-info-data	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 dmsetup	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 dosfstools	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 dpkg	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 e2fsprogs	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 fdisk	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 file	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 finalrd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 findutils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 gcc-10-base	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 gdbserver	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 gnutls-bin	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 gpgv	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 grep	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 gzip	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 hostname	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 init-system-helpers	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 iproute2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 iptables	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 iputils-ping	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 isc-dhcp-client	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 kmod	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 less	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libacl1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libapparmor1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libapt-pkg6.0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libargon2-1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libattr1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libaudit-common	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libaudit1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libblkid1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libbsd0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libbz2-1.0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libc-bin	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libc6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcap-ng0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcap2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcap2-bin	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcbor0.6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcom-err2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcrack2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcrypt1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libcryptsetup12	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libdb5.3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libdbus-1-3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libdebconfclient0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libdevmapper1.02.1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libdns-export1109	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libedit2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libelf1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libengine-pkcs11-openssl	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libexpat1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libext2fs2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libfdisk1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libffi7	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libfido2-1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libgcc-s1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libgcrypt20	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libglib2.0-0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libgmp10	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libgnutls30	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libgpg-error0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libgssapi-krb5-2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libhogweed5	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libidn2-0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libip4tc2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libip6tc2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libisc-export1105	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libjson-c4	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libk5crypto3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libkeyutils1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libkmod2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libkrb5-3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libkrb5support0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 liblz4-1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 liblzma5	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 liblzo2-2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libmagic-mgc	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libmagic1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libmnl0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libmount1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libmpdec2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libncurses6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libncursesw6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnetfilter-conntrack3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnetplan0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnettle7	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnfnetlink0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnftnl11	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnl-3-200	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnl-genl-3-200	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnl-route-3-200	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnss-extrausers	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libnss-mdns	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libopts25	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libp11-3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libp11-kit0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpam-modules	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpam-modules-bin	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpam-pwquality	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpam-runtime	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpam-systemd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpam0g	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpcre2-8-0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpcre3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpcsclite1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpopt0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libprocps8	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpwquality-common	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpwquality1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpython3-stdlib	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpython3.8-minimal	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libpython3.8-stdlib	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libreadline8	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libseccomp2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libselinux1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libsemanage-common	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libsemanage1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libsepol1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libsmartcols1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libsqlite3-0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libss2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libssl1.1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libstdc++6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libsystemd0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libtasn1-6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libtinfo6	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libudev1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libunistring2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libuuid1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libwrap0	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libxtables12	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libyaml-0-2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 libzstd1	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 login	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 logsave	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 lsb-base	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 mawk	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 mime-support	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 mount	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 ncurses-base	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 ncurses-bin	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 netbase	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 netcat-openbsd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 netplan	-	04/29/2025 04:07:52 PM	rwxr-xr-x
📁 netplan.io	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 opensc	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 opensc-pkcs11	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 openssh-client	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 openssh-server	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 openssh-sftp-server	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 openssl	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 p11-kit	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 p11-kit-modules	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 passwd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 perl	-	04/28/2025 04:40:04 AM	rwxr-xr-x
📁 perl-base	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 probert-common	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 probert-network	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 procps	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-attr	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-blinker	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-certifi	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-cffi-backend	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-chardet	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-configobj	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-cryptography	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📄 python3-debconf	0 bytes	01/01/1970 12:00:00 AM	---------
📁 python3-distutils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-idna	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-importlib-metadata	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-jinja2	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-json-pointer	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-jsonpatch	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-jsonschema	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-jwt	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-lib2to3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-markupsafe	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-minimal	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-more-itertools	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-netifaces	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-oauthlib	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-pkg-resources	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-pyrsistent	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-pyudev	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-requests	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-requests-unixsocket	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-serial	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-setuptools	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-six	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-urllib3	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-urwid	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-yaml	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3-zipp	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3.8	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 python3.8-minimal	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 readline-common	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 rfkill	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 sbsigntool	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 secureboot-db	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 sed	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 sensible-utils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 squashfs-tools	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 subiquitycore	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 sudo	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 systemd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 systemd-bootchart	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 systemd-sysv	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 systemd-timesyncd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 sysvinit-utils	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 tar	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 tzdata	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 ubuntu-keyring	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 ucf	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 udev	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 util-linux	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 vim-common	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 vim-tiny	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 wpa_supplicant	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 wpasupplicant	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 xxd	-	04/29/2025 04:07:53 PM	rwxr-xr-x
📁 zlib1g	-	04/29/2025 04:07:53 PM	rwxr-xr-x

Editing: ChangeLog

29/04/2025, commit https://git.launchpad.net/snap-core20/tree/92f33cf5c91cc93d7888f389647936aa39a31752

[ Changes in the core20 snap ]

No detected changes for the core20 snap

[ Changes in primed packages ]

cryptsetup, cryptsetup-bin, libcryptsetup12:amd64 (built from cryptsetup) updated from 2:2.2.2-3ubuntu2.4 to 2:2.2.2-3ubuntu2.5:

cryptsetup (2:2.2.2-3ubuntu2.5) focal; urgency=medium

[ Chengen Du ]
    * Refine proc mounts entries traversal (LP: #2054390)
      - d/i/h/cryptroot: Backport upstream commit 95fd4be9b4c6: d/functions:
        get_mnt_devno(): Speed up execution time on large /proc/mounts.

[ Heitor Alves de Siqueira ]
    * Ignore ZFS entries that don't have major/minor (LP: #1830110):
      - d/i/h/cryptroot: add $fstype check for zfs in get_mnt_devno(), add
        checks for $devnos in generate_initrd_crypttab()

-- Heitor Alves de Siqueira <halves@canonical.com>  Wed, 29 Jan 2025 18:37:57 +0000

distro-info-data (built from distro-info-data) updated from 0.43ubuntu1.17 to 0.43ubuntu1.18:

distro-info-data (0.43ubuntu1.18) focal; urgency=medium

* Add Ubuntu 25.10 "Questing Quokka" (LP: #2107391)
    * Add Debian 15 "Duke"

-- Benjamin Drung <bdrung@ubuntu.com>  Wed, 23 Apr 2025 12:03:33 +0200

opensc, opensc-pkcs11:amd64 (built from opensc) updated from 0.20.0-3ubuntu0.1~esm3 to 0.20.0-3ubuntu0.1~esm4:

opensc (0.20.0-3ubuntu0.1~esm4) focal-security; urgency=medium

* SECURITY REGRESSION: Stack buffer overflow (LP: #2104948)
      - debian/patches/CVE-2021-42782-pre1.patch: simplify PIV I/O
      - debian/patches/CVE-2021-42782-pre2.patch: Replace internal
        implementation of put_tag with asn1
      - debian/patches/CVE-2021-42782-1.patch: cardos: Correctly calculate
        the left bytes to avoid buffer overrun
      - debian/patches/CVE-2021-42782-2.patch: PIV Improved parsing of
        data from the card
      - debian/patches/CVE-2021-42782-3.patch: coolkey: Initialize
        potentially uninitialized memory
      - debian/patches/CVE-2021-42782-4.patch: tcos: prevent out of bounds read
      - debian/patches/CVE-2021-42782-5.patch: iasecc: Prevent stack
        buffer overflow when empty ACL is returned
      - CVE-2021-42782
    * SECURITY UPDATE: Use after return
      - debian/patches/CVE-2021-42780.patch: tcos: Check bounds in
        insert_pin()
      - CVE-2021-42780
    * SECURITY UPDATE: PIN Bypass
      - debian/patches/CVE-2023-40660-1.patch: Fixed PIN authentication
        bypass
      - debian/patches/CVE-2023-40660-2.patch: pkcs15init: Check login
        status before asking for a pin
        overflow during keygen
      - CVE-2023-40660
    * SECURITY UPDATE: Compromised card operations
      - debian/patches/CVE-2023-40661-1.patch: pkcs15: Avoid buffer
        overflow when getting last update
      - debian/patches/CVE-2023-40661-2.patch: setcos: Avoid buffer
        underflow
      - debian/patches/CVE-2023-40661-3.patch: setcos: Avoid writing
        behind the path buffer end
      - debian/patches/CVE-2023-40661-4.patch: oberthur: Avoid buffer
        overflow
      - debian/patches/CVE-2023-40661-5-pre1.patch: pkcs15-pubkey: free
        DER value when parsing public key fails
      - debian/patches/CVE-2023-40661-5.patch: pkcs15-pubkey.c: Avoid
        double-free
      - debian/patches/CVE-2023-40661-6.patch: pkcs15-cflex: check path
        length to prevent underflow
      - debian/patches/CVE-2023-40661-7.patch: Check length of string
        before making copy
      - debian/patches/CVE-2023-40661-8.patch: Check array bounds
      - debian/patches/CVE-2023-40661-9.patch: sc_pkcs15init_rmdir:
        prevent out of bounds write
      - debian/patches/CVE-2023-40661-10.patch: iasecc: Avoid another
        buffer overflow
      - debian/patches/CVE-2023-40661-11-pre1.patch: iassecc: Verify
        buffer lengths before use
      - debian/patches/CVE-2023-40661-11.patch: iasecc: Avoid buffer
        overflow with invalid data
      - debian/patches/CVE-2023-40661-12.patch: iasecc: Check length of
        data when parsing crt
      - debian/patches/CVE-2023-40661-13-pre1.patch: card-entersafe.c:
        Free modulus buffer in case of error
      - debian/patches/CVE-2023-40661-13.patch: entersafe: Avoid buffer
        overflow during keygen
      - CVE-2023-40661
    * SECURITY UPDATE: Missing variable initialization
      - debian/patches/CVE-2024-45615-1.patch: Fix uninitialized values
      - debian/patches/CVE-2024-45615-2.patch: Initialize variables for tag and
        CLA
      - debian/patches/CVE-2024-45615-3.patch: Initialize OID length
      - debian/patches/CVE-2024-45615-4.patch: Initialize variables for tag and
        CLA
      - debian/patches/CVE-2024-45615-5.patch: Avoid using uninitialized memory
      - debian/patches/CVE-2024-45617-1.patch: Check return value when selecting
        AID
      - debian/patches/CVE-2024-45617-2.patch: Return error when response length
        is 0
      - debian/patches/CVE-2024-45617-3.patch: Check number of read bytes
      - debian/patches/CVE-2024-45618-1.patch: Check return value of serial num
        conversion
      - debian/patches/CVE-2024-45618-2.patch: Report transport key error
      - CVE-2024-45615
      - CVE-2024-45617
      - CVE-2024-45618
    * SECURITY UPDATE: Buffer overflow
      - debian/patches/CVE-2023-2977.patch: pkcs15init: correct left
        length calculation to fix buffer overrun bug
      - debian/patches/CVE-2024-45616-1.patch: Fix uninitialized values
      - debian/patches/CVE-2024-45616-2.patch: Check length of APDU response
      - debian/patches/CVE-2024-45616-3.patch: Correctly calculate certificate
        length based on the resplen
      - debian/patches/CVE-2024-45616-4.patch: Check length of serial number
      - debian/patches/CVE-2024-45616-5.patch: Use actual length of reponse
        buffer
      - debian/patches/CVE-2024-45616-6.patch: Check length of response buffer
        in select
      - debian/patches/CVE-2024-45616-7.patch: Check APDU response length and
        ASN1 lengths
      - debian/patches/CVE-2024-45616-8.patch: Report invalid SW when reading
        object
      - debian/patches/CVE-2024-45616-9.patch: Avoid using uninitialized memory
      - debian/patches/CVE-2024-45616-10.patch: Check length of serial number
      - debian/patches/CVE-2024-45620-1.patch: Check length of file to be non-zero
      - debian/patches/CVE-2024-45620-2.patch: Check length of data before
        dereferencing
      - debian/patches/CVE-2024-45620-3.patch: Check length of data when parsing
      - debian/patches/CVE-2024-8443-1.patch: Avoid buffer overflow when writing
        fingerprint
      - debian/patches/CVE-2024-8443-2.patch: Do not accept non-matching key
        responses
      - CVE-2023-2977
      - CVE-2024-45616
      - CVE-2024-45620
      - CVE-2024-8443

-- Bruce Cable <bruce.cable@canonical.com>  Wed, 09 Apr 2025 13:19:18 +1000

openssh-client, openssh-server, openssh-sftp-server (built from openssh) updated from 1:8.2p1-4ubuntu0.12 to 1:8.2p1-4ubuntu0.13:

openssh (1:8.2p1-4ubuntu0.13) focal-security; urgency=medium

* SECURITY UPDATE: incorrect DisableForwarding directive behaviour
      - debian/patches/CVE-2025-32728.patch: fix logic error in session.c.
      - CVE-2025-32728

-- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Fri, 11 Apr 2025 08:16:08 -0400