Commit Graph

100 Commits

Author SHA1 Message Date
Paul Howarth
313b84364b Full groff (not just groff-base) needed for the mansyntax check 2020-03-27 11:17:01 +00:00
Paul Howarth
1b5090686f Switch to https:// upstream URLs 2020-03-27 11:17:01 +00:00
Fedora Release Engineering
a03c90f6de - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2020-03-27 11:17:01 +00:00
Paul Howarth
6a9feab7f1 Merge remote-tracking branch 'origin/f30' into epel8 2020-03-27 09:36:23 +00:00
Mohan Boddu
aa9cbcd65d "Adding package.cfg file" 2020-03-26 18:18:47 -04:00
Kamil Dudka
41525baf3f Resolves: CVE-2019-17498 - fix integer overflow in SSH_MSG_DISCONNECT logic 2019-10-30 18:23:36 +01:00
Fedora Release Engineering
3d9150262d - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-07-25 14:27:39 +00:00
Paul Howarth
6957951772 Add changelog reference to CVE-2019-13115 2019-07-19 09:44:33 +01:00
Paul Howarth
8f106e1af2 Update to 1.9.0
- New upstream release 1.9.0
  - Adds ECDSA keys and host key support when using OpenSSL
  - Adds ED25519 key and host key support when using OpenSSL 1.1.1
  - Adds OpenSSH style key file reading
  - Adds AES CTR mode support when using WinCNG
  - Adds PEM passphrase protected file support for libgcrypt and WinCNG
  - Adds SHA256 hostkey fingerprint
  - Adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path()
  - Adds explicit zeroing of sensitive data in memory
  - Adds additional bounds checks to network buffer reads
  - Adds the ability to use the server default permissions when creating sftp directories
  - Adds support for building with OpenSSL no engine flag
  - Adds support for building with LibreSSL
  - Increased sftp packet size to 256k
  - Fixed oversized packet handling in sftp
  - Fixed building with OpenSSL 1.1
  - Fixed a possible crash if sftp stat gets an unexpected response
  - Fixed incorrect parsing of the KEX preference string value
  - Fixed conditional RSA and AES-CTR support
  - Fixed a small memory leak during the key exchange process
  - Fixed a possible memory leak of the ssh banner string
  - Fixed various small memory leaks in the backends
  - Fixed possible out of bounds read when parsing public keys from the server
  - Fixed possible out of bounds read when parsing invalid PEM files
  - No longer null terminates the scp remote exec command
  - Now handle errors when Diffie Hellman key pair generation fails
  - Fixed compiling on Windows with the flag STDCALL=ON
  - Improved building instructions
  - Improved unit tests
- Needs OpenSSL ≥ 1.0.1 now as ECC support is assumed
- Modernize spec somewhat as EL-6 can no longer be supported
2019-06-20 11:22:28 +01:00
Paul Howarth
69ee8f7637 Update to 1.8.2
- New upstream release 1.8.2
  - Fixed the misapplied userauth patch that broke 1.8.1
  - Moved the MAX size declarations from the public header
2019-03-26 09:44:16 +00:00
Paul Howarth
7dfb17d3cb Update to 1.8.1
- New upstream release 1.8.1
  - Fixed possible integer overflow when reading a specially crafted packet
    (CVE-2019-3855)
  - Fixed possible integer overflow in userauth_keyboard_interactive with a
    number of extremely long prompt strings (CVE-2019-3863)
  - Fixed possible integer overflow if the server sent an extremely large
    number of keyboard prompts (CVE-2019-3856)
  - Fixed possible out of bounds read when processing a specially crafted
    packet (CVE-2019-3861)
  - Fixed possible integer overflow when receiving a specially crafted exit
    signal message channel packet (CVE-2019-3857)
  - Fixed possible out of bounds read when receiving a specially crafted exit
    status message channel packet (CVE-2019-3862)
  - Fixed possible zero byte allocation when reading a specially crafted SFTP
    packet (CVE-2019-3858)
  - Fixed possible out of bounds reads when processing specially crafted SFTP
    packets (CVE-2019-3860)
  - Fixed possible out of bounds reads in _libssh2_packet_require(v)
    (CVE-2019-3859)
- Fix mis-applied patch in the fix of CVE-2019-3859
  - https://github.com/libssh2/libssh2/issues/325
  - https://github.com/libssh2/libssh2/pull/327
2019-03-19 12:20:07 +00:00
Paul Howarth
ab0e53ac52 Work around mock locale issues in test suite
Explicitly run the test suite in the en_US.UTF-8 locale to work around flaky
locale settings in mock builders.
2019-02-04 12:17:15 +00:00
Fedora Release Engineering
4fcb4f9ea8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-02-01 08:17:37 +00:00
Fedora Release Engineering
d1bae723b7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-13 08:52:50 +00:00
Fedora Release Engineering
339e430067 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-02-07 23:25:06 +00:00
Igor Gnatenko
2ee9663dd7
Switch to %ldconfig_scriptlets
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-03 16:28:53 +01:00
Paul Howarth
af56e4903a Fix for BrickFTP (#1489736), spec clean-up
- scp: Do not NUL-terminate the command for remote exec (#1489736, GH#208)
- Make devel package dependency on main package arch-specific
- Drop EL-5 support
  - noarch sub-packages always available now
  - Drop legacy Group: and BuildRoot: tags
  - Drop explicit buildroot cleaning
  - %{__isa_bits} always defined now
2017-09-12 11:03:08 +01:00
Fedora Release Engineering
29d026f712 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild 2017-08-03 02:19:51 +00:00
Fedora Release Engineering
30a5673bf1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild 2017-07-26 19:46:05 +00:00
Fedora Release Engineering
e44a6af4ac - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild 2017-02-10 19:30:17 +00:00
Paul Howarth
fa24637e03 libssh2 1.8.0 2016-10-25 09:23:34 +01:00
Paul Howarth
a9c954ed4c Update to 1.8.0
- New upstream release 1.8.0
  - Added a basic dockerised test suite
  - crypto: Add support for the mbedTLS backend
  - See RELEASE-NOTES for details of bug fixes
2016-10-25 09:16:53 +01:00
Kamil Dudka
29e2533fad add libssh2-1.7.0-openssl11-memleak.patch
... forgotten in the last commit
2016-10-20 17:47:18 +02:00
Kamil Dudka
999a09c336 make curl test-suite work again with valgrind enabled 2016-10-20 17:38:44 +02:00
Tomas Mraz
975ba11ea3 rebuild with OpenSSL 1.1.0 2016-10-11 18:12:27 +02:00
Paul Howarth
f8c7ae2c29 Fix EL-5 compatibility
- Revert parts of previous change that broke EL-5 compatibility
- Include NEWS in docs package, it's much more than RELEASE-NOTES
2016-03-06 11:56:26 +00:00
Peter Robinson
0355577a5d Modernise spec (no we really don't care about el4/fc4), Don't ship ChangeLog/NEWS, duplicates of RELEASE-NOTES 2016-03-05 17:45:34 +00:00
Paul Howarth
f9f6b45015 Drop UTF-8 patch, which breaks things rather than fixes them 2016-02-24 12:12:23 +00:00
Kamil Dudka
2d448ce083 Resolves: CVE-2016-0787 - diffie_hellman_sha1: Convert bytes to bits 2016-02-24 09:08:02 +01:00
Paul Howarth
0587739ebe Update to 1.7.0
- New upstream release 1.7.0
  - diffie_hellman_sha256: Convert bytes to bits (CVE-2016-0787); see
    http://www.libssh2.org/adv_20160223.html
  - libssh2_session_set_last_error: Add function
  - See RELEASE-NOTES for details of bug fixes
2016-02-23 10:55:39 +00:00
Dennis Gilmore
1ce9bf4210 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild 2016-02-04 03:58:15 +00:00
Paul Howarth
eb27184133 Fix pkg-config --libs output (#1279966) 2015-11-11 11:34:14 +00:00
Dennis Gilmore
576be02309 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild 2015-06-17 17:21:55 +00:00
Paul Howarth
80ed1ccaeb Update to 1.6.0
- New upstream release 1.6.0
  - Added CMake build system
  - Added libssh2_userauth_publickey_frommemory()
  - See RELEASE-NOTES for details of bug fixes
2015-06-14 17:35:46 +01:00
Paul Howarth
62cea02db3 Merge branch 'master' into f21
Conflicts:
	libssh2.spec
2015-03-11 10:55:17 +00:00
Paul Howarth
33cf9702d8 Update to 1.5.0
- New upstream release 1.5.0
  - See RELEASE-NOTES for details of bug fixes and enhancements
  - Security Advisory for CVE-2015-1782, using SSH_MSG_KEXINIT data unbounded
2015-03-11 10:33:45 +00:00
Kamil Dudka
61ab33f548 Resolves: #1147717 - prevent a not-connected agent from closing STDIN 2014-10-10 13:25:08 +02:00
Kamil Dudka
384b1c0765 Resolves: #1147717 - prevent a not-connected agent from closing STDIN 2014-10-10 13:22:55 +02:00
Peter Robinson
48f7eb2d50 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild 2014-08-17 06:10:03 +00:00
Peter Robinson
aa67a47340 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild 2014-08-17 06:09:50 +00:00
Tom Callaway
f3791deea4 fix license handling 2014-07-18 15:23:59 -04:00
Tom Callaway
a53677d01b fix license handling 2014-07-18 15:23:38 -04:00
Dennis Gilmore
d7ba3102d3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild 2014-06-07 00:34:36 -05:00
Kamil Dudka
5881ed4686 Fix curl's excessive memory consumption during scp download 2014-04-30 15:06:59 +02:00
Paul Howarth
0908d2fabd The aarch64 buildroot seems to have the same locale issue as the PPC one 2014-02-17 16:19:16 +00:00
Karsten Hopp
fc169ae47c next attempt to work around a self check problem on PPC* 2014-02-17 15:39:41 +01:00
Karsten Hopp
0816533a63 skip self checks on ppc* 2014-02-17 14:26:40 +01:00
Kamil Dudka
343e650ca6 fix a use after free in channel.c 2013-08-14 17:54:06 +02:00
Kamil Dudka
68034f3fb2 fix very slow sftp upload to localhost 2013-08-14 17:52:22 +02:00
Dennis Gilmore
bddd40fef5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild 2013-08-03 02:06:55 -05:00