[Git][security-tracker-team/security-tracker][master] Reserve DSA number for openssh update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Apr 9 21:28:41 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
07cdadf7 by Salvatore Bonaccorso at 2026-04-09T22:27:47+02:00
Reserve DSA number for openssh update

- - - - -


4 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
- data/next-oldstable-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
Binary files a/data/CVE/list and b/data/CVE/list differ


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[09 Apr 2026] DSA-6204-1 openssh - security update
+	{CVE-2026-3497}
+	[bookworm] - openssh 1:9.2p1-2+deb12u9
+	[trixie] - openssh 1:10.0p1-7+deb13u2
 [08 Apr 2026] DSA-6203-1 tiff - security update
 	{CVE-2026-4775}
 	[bookworm] - tiff 4.5.0-6+deb12u4


=====================================
data/dsa-needed.txt
=====================================
@@ -63,9 +63,6 @@ nodejs/oldstable
 opennds/oldstable
   pinged maintainer, but no reply yet. should most probably be bumped to 10.x
 --
-openssh (carnil)
-  Maintainer posted debdiffs for review for trixie and bookworm
---
 openvswitch
   Maintainer proposed updates via security, but issue affects only FTP algo and
   needs to be explicitly enabled, check for assessment DSA/no-dsa first


=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -10,10 +10,6 @@ CVE-2025-27221
 	[bookworm] - ruby3.1 3.1.7-1~deb12u1
 CVE-2023-50262
 	[bookworm] - php-dompdf 2.0.3+dfsg-1+deb12u1
-CVE-2025-61985
-	[bookworm] - openssh 1:9.2p1-2+deb12u8
-CVE-2025-61984
-	[bookworm] - openssh 1:9.2p1-2+deb12u8
 CVE-2025-67269
 	[bookworm] - gpsd 3.22-4.1+deb12u1
 CVE-2025-67268



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/07cdadf74b8912d5da12b11a9af0400748c098e6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/07cdadf74b8912d5da12b11a9af0400748c098e6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260409/b5d26948/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list