This update for openssh fixes the following issues: Security vulnerabilities addressed: - CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers . - CVE-2019-6111: Properly validate object names received by the scp client to prevent arbitrary file overwrites when interacting with a malicious SSH server . Other issues fixed: - Fixed two race conditions in sshd relating to SIGHUP . - Returned proper reason for port forwarding failures . - Fixed a double free in the KDF CAVS testing tool .