180d4765d3
6.9p1-12 + 0.9.3-6
2016-05-02 14:11:09 +02:00
0a18e4800e
Fix DH GEX against non-default group sizes (openssh-7.2) ( #1332082 )
2016-05-02 14:05:19 +02:00
10f391c509
openssh-6.9p1-11 + 0.9.3-6
2016-03-10 14:02:33 +01:00
47f126ca0a
sanitise characters destined for xauth(1) ( #1316529 )
...
Upstream:
9d47b8d3f5
2016-03-10 14:02:33 +01:00
08f0c1b883
6.9p1-10 + 0.9.3-6
2016-01-15 09:36:19 +01:00
5cbd391da9
Fix vulnerabilities published with openssh-7.1p2 ( #1298626 )
...
* CVE-2016-0777 OpenSSH: Client Information leak due to use of roaming connection feature
* Fix an out of-bound read access in the packet handling code
2016-01-15 09:34:05 +01:00
2cc5f8d34f
6.9p1-9 + 0.9.3-6
2015-10-06 18:13:39 +02:00
17fe33f562
Revert "Apply GSSAPI key exchange methods in client offered list ( #1261414 )" ( #1268968 )
...
This reverts commit a78d20aea9
2015-10-06 18:12:44 +02:00
1163e29a09
6.9p1-8 + 0.9.3-6
2015-10-01 10:17:35 +02:00
f57d783933
Increase size limit of glob structures in sftp
2015-10-01 10:16:18 +02:00
88e0ad5272
Having no keys is not fatal in gssapi key exchange ( #1261414 )
2015-09-30 15:54:44 +02:00
a78d20aea9
Apply GSSAPI key exchange methods in client offered list ( #1261414 )
2015-09-30 15:51:27 +02:00
76d20b5d73
Return back forgotten patch which prevent connection using GSSAPI key exchange ( #1261414 )
2015-09-30 15:35:47 +02:00
851c2edb82
6.9p1-7 + 0.9.3-6
2015-09-09 16:56:30 +02:00
c4d3e04417
Fix warnings produced by gcc
...
related to
* ssh-keysign and fingerprint algorithms
* ssh and GSSAPI algorithms validation
2015-09-09 16:00:40 +02:00
e41c4da9c3
6.9p1-6.1 + 0.9.3-6
2015-08-20 12:13:13 +02:00
7eedf13e93
rebase gssKex patch to 6.9
2015-08-20 12:12:57 +02:00
b03894d4b8
6.9p1-6 + 0.9.3-6
2015-08-20 11:37:07 +02:00
4f43511091
Add GSSAPIKexAlgorithms option for server and client application
2015-08-20 11:36:20 +02:00
e18038aa0e
Add possibility to validate legacy system md5 fingerprints with less effort from user ( #1249626 )
2015-08-20 11:18:53 +02:00
8cbf67daf2
Fix problem with DSA keys using pam_ssh_agent_auth ( #1251777 )
2015-08-19 16:48:56 +02:00
23f2b8953b
6.9p1-5 + 0.9.3-6
2015-08-14 12:53:32 +02:00
4776fad91e
Fix several vulnerabilities published with new openssh-7.0, namely:
...
Incorrectly set TTYs to be world-writable (#1252861 )
https://anongit.mindrot.org/openssh.git/commit/?id=6f941396b6835ad18018845f515b0c4fe20be21a
Privilege separation weakness related to PAM support (#1252844 )
https://anongit.mindrot.org/openssh.git/commit/?id=d4697fe9a28dab7255c60433e4dd23cf7fce8a8b
Use-after-free bug related to PAM support (#1252852 )
https://anongit.mindrot.org/openssh.git/commit/?id=5e75f5198769056089fb06c4d738ab0e5abc66f7
2015-08-14 12:49:23 +02:00
405790ef61
Fix pam_ssh_agent_auth after rebase ( #1251777 )
2015-08-11 17:58:03 +02:00
1d50678457
Remove obsolete triggerruns for migration to systemd
...
- overlapping versions are not supported by current rpm
2015-07-28 13:08:55 +02:00
6286d6a8e6
6.9p1-4 + 0.9.3-6
2015-07-28 11:24:35 +02:00
67938e0c00
Handle terminal control characters in scp progressmeter ( #1247204 )
2015-07-28 11:23:51 +02:00
83bfb1fce5
6.9p1-3 + 0.9.3-6
2015-07-23 11:12:19 +02:00
c6d2eca7de
only query each keyboard-interactive device once ( #1245971 )
...
Upstream commit
https://anongit.mindrot.org/openssh.git/commit/?id=5b64f85bb811246c59ebab70aed331f26ba37b18
2015-07-23 11:06:12 +02:00
ca62b6133e
6.9p1-2 + 0.9.3-6
2015-07-15 09:44:37 +02:00
6e9574d7ec
Fix race condition with auditing messages answers ( #1242682 )
2015-07-15 08:35:18 +02:00
a4d9cd5694
Patch name, formating
2015-07-08 12:24:34 +02:00
58ba50440e
Allow building seccomp filters also for s390(x) architectures ( #1195065 )
2015-07-02 17:10:58 +02:00
274e22c863
Forgotten sources
2015-07-01 17:54:29 +02:00
187a349ee6
6.9p1-1 + 0.9.3-6
2015-07-01 15:51:20 +02:00
5de6c89ff2
Correctly revert "PermitRootLogin no" option from upstream sources
2015-07-01 15:51:20 +02:00
535d341e70
rebase to new upstream release 6.9
2015-07-01 15:51:01 +02:00
21bee694ac
Increase limitation number of files which can be listed using glob in sftp
2015-06-25 16:10:55 +02:00
f3002bfb7b
6.8p1-9 + 0.9.3-5
2015-06-24 10:49:08 +02:00
252221e6a1
Allow socketcall(SYS_SHUTDOWN) for net_child on ix86 architecture
2015-06-24 10:48:38 +02:00
b59dd83265
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
2015-06-18 00:06:18 +00:00
5aa47ae6f4
6.8p1-8 + 0.9.3-5
2015-06-08 09:06:12 +02:00
7fa5057af5
Return stat syscall to seccomp filter, since it is not yet completely legacy ( #1228323 )
...
* problems occured with gssapi, which is trying to touch some libraries
2015-06-08 09:04:48 +02:00
f049b3b1ad
6.8p1-7 + 0.9.3-5
2015-06-03 07:54:20 +02:00
73d45fa321
Correct handle pam_ssh_agent_auth memory, buffers and variable sizes, which caused segfaults ( #1225106 )
2015-06-02 18:56:57 +02:00
8a10dcb363
6.8p1-6 + 0.9.3-5
2015-05-28 14:02:26 +02:00
09ca6ef2e6
Provide LDIF version of LPK schema
2015-05-28 13:51:58 +02:00
474a38f916
Document required selinux boolean for working ssh-ldap-helper
2015-05-28 13:48:02 +02:00
df3679f973
Add missing configuration values to ssh man page
2015-05-28 13:43:22 +02:00
0a076e7e9e
Add missing Banner in sshd -T output
2015-05-28 13:39:34 +02:00
Jakub Jelen
Dennis Gilmore