Jakub Jelen
aa9a7754ed
Audit implicit mac, if mac is covered in cipher ( #1271694 )
...
For example chacha20-poly1305@openssh.com is AEAD (Authenticated Encryption with Associated Data) cipher and thus there is no separate MAC when it is used.
2015-10-22 14:53:36 +02:00
Jakub Jelen
3f55133c24
openssh-7.0p1-1 + 6.9.3-7
...
New upstream release (#1252639 )
- allow root login in default config
Security: Use-after-free bug related to PAM support (#1252853 )
Security: Privilege separation weakness related to PAM support (#1252854 )
Security: Incorrectly set TTYs to be world-writable (#1252862 )
2015-08-13 17:44:41 +02:00
Jakub Jelen
6e9574d7ec
Fix race condition with auditing messages answers ( #1242682 )
2015-07-15 08:35:18 +02:00
Jakub Jelen
535d341e70
rebase to new upstream release 6.9
2015-07-01 15:51:01 +02:00
Jakub Jelen
054365b28e
Fix segfault on daemon exit caused by API change ( #1213423 )
2015-04-20 17:27:34 +02:00
Jakub Jelen
f78ec07f4b
Fix audit_end_command to restore ControlPersist function ( #1203900 )
2015-04-02 17:51:47 +02:00
Jakub Jelen
af7be11f1d
Regression: solve sshd segfaults if other instance already running
2015-03-30 11:48:11 +02:00
Jakub Jelen
12cf3e4d35
Update audit patch after rebase with more sanity checks
2015-03-26 14:20:31 +01:00
Jakub Jelen
acf98854ca
Resolve segfault with auditing commands ( #1203900 )
2015-03-24 10:39:01 +01:00
Jakub Jelen
132f8f8686
6.8p1-1 + 0.9.3-5
2015-03-23 16:05:49 +01:00
Jakub Jelen
c8062c4be3
Fix auditing when using combination of ForceCommand and PTY
2015-03-11 18:08:59 +01:00
Jakub Jelen
e3a6256653
Fix build issue without getuid32
2015-02-23 12:41:59 +01:00
Jakub Jelen
d5a8001387
Fix seccomp filter for ix68 ( #1194401 ), fix previous commit
2015-02-23 12:17:30 +01:00
Jakub Jelen
0a4ac4f4d3
Enable seccomp sandboxing after resolving problems with audit patch ( #1062953 )
2015-02-11 14:08:42 +01:00
Jakub Jelen
021326a6ae
Fix audit patch after rebase to 6.7
2015-01-27 12:07:13 +01:00
Petr Lautrbach
1900351913
6.7p1-1 + 0.9.3-4
2015-01-20 13:21:45 +01:00