Daniel Baumann: Debian: Linux Vulnerability Mitigation (ssh-keysign-pwn)

After the Linux local root privilege escalations of the last two weeks, the one of today is ssh-keysign-pwn [no CVE yet] which allows read root-owned files as an unprivileged user. I’ve cherry-picked the upstream commit to fix it in trixie-fastforward-backports (linux 7.0.4-1 backports for trixie) and confirmed that the exploits don’t work anymore.