I contacted the package maintainer and received the following response:

According to DSA you've mentioned first vulnerable version of openssl
was 0.9.8c-1.
Fortunately maemo distro has older version - 0.9.7e-4. You can see it
in their pool for maemo4.0/chinook distro, which is used in N810:
http://repository.maemo.org/pool/mae...ree/o/openssl/

You can also check it on your device with dpkg -l openssl command.

So, I think openssh is not affected by this vulnerability.


The dpkg command didn't work for me, but going into redpill mode allowed me to verify that the libssl is 0.9.7e-4.osso2+3sarge3.osso6.