|
|
|
|
|
|
by eliasmacpherson
4613 days ago
|
|
|
I found your comment somewhat cryptic, the asterisks mean it's affected, right? http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729029 "AES-GCM support was introduced in 6.2, so oldstable and stable should
be fine (from http://www.openssh.com/txt/release-6.2):" Debian 7 (wheezy) -- OpenSSH_6.0p1 Debian-4, OpenSSL 1.0.1e 11 Feb 2013 (Supports AES-GCM) If AES-GCM was introduced in 6.2, did someone patch 6.0 to support AES-GCM? I can't reconcile your list with the statement in the bug report otherwise. Could you explain? I can't understand why AES-GCM was introduced in 6.2 and your list has many < 6.2 that support AES-GCM. |
|
|
e.g. Debian 7 has a version of OpenSSL that supports AES-GCM, but OpenSSH isn't one of the affected versions.