The restrictions introduced in the security fix to address
CVE-2019-1000018 also disallowed the -pf and -pt options which are used
by the scp support in libssh2. This update restores support for those.
For the stable distribution (stretch), this problem has been fixed in
We recommend that you upgrade your rssh packages.
For the detailed security status of rssh please refer to
its security tracker page at:
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
Debian Security Advisory DSA-4377-3 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
February 22, 2019 https://www.debian.org/security/faq