Hello Utkarsh, I've just quickly run through the steps in the original bug report against a recent Debian Stretch docker image and as not able to reproduce it.
Image tested: $ docker images | grep stretch debian stretch d74a4ce6ed8b 11 days ago 101MB If you are concerned, I suggest looking into the history/VCS logs of: * debian/patches/CVE-2018-15473.patch Then you can know if it traces back to Debian. Hope it help. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1934501 Title: CVE-2018-15473 patch introduce user enumeration vulnerability To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1934501/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
