Debian: New scponly packages fix arbitrary code execution

LinuxSecurity.com: In addition, it was discovered that it was possible to invoke with scp with certain options that may lead to execution of arbitrary commands (CVE-2007-6415).

More...