openssh-7.2p2-4 + 0.10.2-3

2016-07-18 15:03:33 +02:00 · 2016-07-18 15:03:33 +02:00 · 2762c74636
commit 2762c74636
parent 920d3a7915
1 changed files with 4 additions and 1 deletions
--- a/openssh.spec
+++ b/openssh.spec
@ -66,7 +66,7 @@

 # Do not forget to bump pam_ssh_agent_auth release if you rewind the main package release to 1
 %global openssh_ver 7.2p2
-%global openssh_rel 3
+%global openssh_rel 4
 %global pam_ssh_agent_ver 0.10.2
 %global pam_ssh_agent_rel 3

@ -817,6 +817,9 @@ getent passwd sshd >/dev/null || \
 %endif

 %changelog
+* Mon Jul 18 2016 Jakub Jelen <jjelen@redhat.com> - 7.2p2-4 + 0.10.2-3
+- CVE-2016-6210: User enumeration via covert timing channel (#1357443)
+
 * Fri Apr 22 2016 Jakub Jelen <jjelen@redhat.com> - 7.2p2-3 + 0.10.2-3
 - CVE-2015-8325: ignore PAM environment vars when UseLogin=yes (#1328013)