From cb306d6a7cba58c6503e979bbe2e13248fc60297 Mon Sep 17 00:00:00 2001
From: Jakub Jelen <jjelen@redhat.com>
Date: Fri, 22 Apr 2016 15:23:05 +0200
Subject: [PATCH] openssh-7.2p2-3 + 0.10.2-3

---
 openssh.spec | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/openssh.spec b/openssh.spec
index 9a09ad6..2752f6a 100644
--- a/openssh.spec
+++ b/openssh.spec
@@ -66,7 +66,7 @@
 
 # Do not forget to bump pam_ssh_agent_auth release if you rewind the main package release to 1
 %global openssh_ver 7.2p2
-%global openssh_rel 2
+%global openssh_rel 3
 %global pam_ssh_agent_ver 0.10.2
 %global pam_ssh_agent_rel 3
 
@@ -812,6 +812,9 @@ getent passwd sshd >/dev/null || \
 %endif
 
 %changelog
+* Fri Apr 22 2016 Jakub Jelen <jjelen@redhat.com> - 7.2p2-3 + 0.10.2-3
+- CVE-2015-8325: ignore PAM environment vars when UseLogin=yes (#1328013)
+
 * Wed Apr 06 2016 Jakub Jelen <jjelen@redhat.com> 7.2p2-2 + 0.10.2-3
 - Fix GSSAPI Key Exchange according to RFC (#1323622)
 - Remove init.d/functions dependency from sshd-keygen (#1317722)