** Tags removed: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authetication fails when GSSAPI enabled
To manage notifications about this bug go to:
http
This bug was fixed in the package openssh - 1:8.9p1-3ubuntu0.13
---
openssh (1:8.9p1-3ubuntu0.13) jammy-security; urgency=medium
* SECURITY UPDATE: incorrect DisableForwarding directive behaviour
- debian/patches/CVE-2025-32728.patch: fix logic error in session.c.
- CVE-2025
re comment #24 piuparts is regressed in -release (since Jammy+):
https://autopkgtest.ubuntu.com/packages/piuparts – I triggered
migration-reference/0 tests on Jammy to confirm this.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https
Autopkgtests are looking good for openssh 1:8.9p1-3ubuntu0.12 from
jammy-proposed.
Together with the previous comment (#26), this finalizes SRU
verification for this bug report.
PASS
https://autopkgtest.ubuntu.com/results/autopkgtest-jammy/jammy/amd64/o/openssh/20250327_230556_f645e@/log.gz
PASS
I tested openssh (1:8.9p1-3ubuntu0.12) from jammy-proposed, according to
"Test Plan 2". Looking good!
[ Test Plan 2 ]
###Set up a Jammy LXD container & install openssh-server from proposed:
root@jjsru:~# apt list *openssh-server*
Listing... Done
openssh-server/jammy-proposed,now 1:8.9p1-3ubuntu0.
Hello Moritz, or anyone else affected,
Accepted openssh into jammy-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/openssh/1:8.9p1-3ubuntu0.12 in a
few hours, and then in the -proposed repository.
Please help us by testing this new package. See
https
This bug was fixed in the package openssh - 1:9.6p1-3ubuntu13.9
---
openssh (1:9.6p1-3ubuntu13.9) noble; urgency=medium
[ Lukas Märdian ]
* d/p/gssapi.patch: Fix interaction between gssapi-keyex and pubkey auth
(LP: #2028282)
Don't prefer host-bound public key signatures i
** Changed in: openssh (Ubuntu Jammy)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authetication fails when GSSAPI enabled
To
I tested openssh (1:9.6p1-3ubuntu13.9) from noble-proposed, according to
"Test Plan 2". Looking good!
[ Test Plan 2 ]
###Set up a Noble LXD container & install openssh-server from proposed:
root@nnsru:~# apt list *openssh-server*
Listing... Done
openssh-server/noble-proposed,now 1:9.6p1-3ubuntu13
Autopkgtests are looking good for openssh 1:9.6p1-3ubuntu13.9 from
noble-proposed. The intermittent failures from comment #19 have all been
resolved, with openssh/s390x and crmsh/any regressed in jammy-updates
(unrelated to this update).
Together with the previous comment (#20), this finalizes SRU
Hello Moritz, or anyone else affected,
Accepted openssh into noble-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/openssh/1:9.6p1-3ubuntu13.9 in a
few hours, and then in the -proposed repository.
Please help us by testing this new package. See
https
** Merge proposal linked:
https://code.launchpad.net/~slyon/ubuntu/+source/openssh/+git/openssh/+merge/481191
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authet
This bug was fixed in the package openssh - 1:9.7p1-7ubuntu4.1
---
openssh (1:9.7p1-7ubuntu4.1) oracular; urgency=medium
* d/p/gssapi.patch: Fix interaction between gssapi-keyex and pubkey auth
(LP: #2028282)
Don't prefer host-bound public key signatures if there was no init
I tested openssh (1:9.7p1-7ubuntu4.1) from oracular proposed, according
to TestCase1 (comment #14) and TestCase2 (this comment). All looking
good!
[ Test Case 2 ]
###Set up an Oracular LXD container & install openssh-server from proposed:
root@oosru:~# apt list *openssh-server*
openssh-server/or
Autopkgtests are looking good for openssh 1:9.7p1-7ubuntu4.1 from
oracular-proposed. The intermittent failures from comment #13 have all
been resolved.
https://autopkgtest.ubuntu.com/results/autopkgtest-oracular/oracular/amd64/o/openssh/20241218_102717_96d50@/log.gz
https://autopkgtest.ubuntu.com/
Hello Moritz, or anyone else affected,
Accepted openssh into oracular-proposed. The package will build now and
be available at
https://launchpad.net/ubuntu/+source/openssh/1:9.7p1-7ubuntu4.1 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
htt
** Changed in: openssh (Ubuntu Oracular)
Importance: Undecided => High
** Changed in: openssh (Ubuntu Noble)
Importance: Undecided => High
** Changed in: openssh (Ubuntu Jammy)
Importance: Undecided => Medium
--
You received this bug notification because you are a member of Ubuntu
Bugs
enr0n says:
"Please leave noble alone for now. @ahasenack and I have been monitoring the
regression report and hoping for more feedback, but we still need to decide how
to move forward. In any case, that won't be solved before EOY."
** Changed in: openssh (Ubuntu Jammy)
Status: New => Tri
** Changed in: openssh (Ubuntu Oracular)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authetication fails when GSSAPI enabled
To m
Uploaded into Oracular for SRU review.
Holding back the upload to Noble (and Jammy), for now, due to a pending
SRU regression in 1:9.6p1-3ubuntu13.7. I don't want this to get
entangled. Maybe we should bundle it on top, though?
--
You received this bug notification because you are a member of Ub
** Changed in: openssh (Ubuntu Jammy)
Assignee: (unassigned) => Lukas Märdian (slyon)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authetication fails when GSSA
** Merge proposal linked:
https://code.launchpad.net/~slyon/ubuntu/+source/openssh/+git/openssh/+merge/478457
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authet
** Changed in: openssh (Ubuntu Noble)
Assignee: (unassigned) => Lukas Märdian (slyon)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authetication fails when GSSA
** Merge proposal linked:
https://code.launchpad.net/~slyon/ubuntu/+source/openssh/+git/openssh/+merge/478454
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authet
** Merge proposal linked:
https://code.launchpad.net/~slyon/ubuntu/+source/openssh/+git/openssh/+merge/478452
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU] SSH pubkey authet
** Description changed:
- Since the upgrade from Ubuntu 20.04 to 22.04 the SSH login via a SSH
- pubkey to our servers fails, while password and kerberos are still
- working.
+ [ Impact ]
+
+ * Login with publickey fails when openssh server is configured to use
+ GSSAPI authentication, too. Erro
** Summary changed:
- SSH pubkey authetication fails when GSSAPI enabled
+ [SRU] SSH pubkey authetication fails when GSSAPI enabled
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2028282
Title:
[SRU
27 matches
Mail list logo
