Debian Long Term Support / LTS Security Information / 2019 / Security Information -- DLA-2038-2 x2goclient

Debian Security Advisory

DLA-2038-2 x2goclient -- LTS security update

Date Reported:

23 Dec 2019

Affected Packages:

x2goclient

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 947129.

More information:

A change introduced in libssh 0.6.3-4+deb8u4 (which got released as DLA 2038-1) has broken x2goclient's way of scp'ing session setup files from client to server, resulting in an error message shown in a GUI error dialog box during session startup (and session resuming).

For Debian 8 Jessie, this problem has been fixed in x2goclient version 4.0.3.1-4+deb8u1.

We recommend that you upgrade your x2goclient packages.

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS