[SECURITY] [DLA 611-1] jsch security update

ID DEBIAN:DLA-611-1:1B900
Type debian
Reporter Debian
Modified 2016-09-05T18:08:00


Package : jsch Version : 0.1.42-2+deb7u1 CVE ID : CVE-2016-5725

It was discovered that there was a path traversal vulnerability in jsch, a pure Java implementation of the SSH2 protocol.

For Debian 7 "Wheezy", this issue has been fixed in jsch version 0.1.42-2+deb7u1.

We recommend that you upgrade your jsch packages.


 : :'  :     Chris Lamb
 `. `'`      lamby@debian.org / chris-lamb.co.uk