pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: [pkgsrc-2015Q2] pkgsrc/security/openssh
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 14 22:03:39 UTC 2015
Modified Files:
pkgsrc/security/openssh [pkgsrc-2015Q2]: Makefile distinfo options.mk
pkgsrc/security/openssh/patches [pkgsrc-2015Q2]: patch-Makefile.in
patch-auth-passwd.c patch-auth-rhosts.c patch-auth.c patch-auth1.c
patch-auth2.c patch-channels.c patch-clientloop.c patch-config.h.in
patch-configure.ac patch-defines.h patch-includes.h
patch-openbsd-compat_openbsd-compat.h
patch-openbsd-compat_port-tun.c patch-platform.c patch-scp.c
patch-session.c patch-ssh.c patch-sshd.c patch-sshpty.c
Added Files:
pkgsrc/security/openssh/patches [pkgsrc-2015Q2]: patch-sshd.8
Removed Files:
pkgsrc/security/openssh/patches [pkgsrc-2015Q2]: patch-compat.c
patch-configure patch-sshconnect.c
Log Message:
Pullup ticket #4771 - requested by taca
security/openssh: security update
Revisions pulled up:
- security/openssh/Makefile 1.233
- security/openssh/distinfo 1.92-1.93
- security/openssh/options.mk 1.30
- security/openssh/patches/patch-Makefile.in 1.4
- security/openssh/patches/patch-auth-passwd.c 1.2
- security/openssh/patches/patch-auth-rhosts.c 1.2
- security/openssh/patches/patch-auth.c 1.3
- security/openssh/patches/patch-auth1.c 1.3
- security/openssh/patches/patch-auth2.c 1.4
- security/openssh/patches/patch-channels.c 1.2
- security/openssh/patches/patch-clientloop.c 1.2
- security/openssh/patches/patch-compat.c deleted
- security/openssh/patches/patch-config.h.in 1.4
- security/openssh/patches/patch-configure deleted
- security/openssh/patches/patch-configure.ac 1.4
- security/openssh/patches/patch-defines.h 1.3
- security/openssh/patches/patch-includes.h 1.3
- security/openssh/patches/patch-openbsd-compat_openbsd-compat.h 1.3
- security/openssh/patches/patch-openbsd-compat_port-tun.c 1.2
- security/openssh/patches/patch-platform.c 1.4
- security/openssh/patches/patch-scp.c 1.3
- security/openssh/patches/patch-session.c 1.4
- security/openssh/patches/patch-ssh.c 1.4
- security/openssh/patches/patch-sshconnect.c deleted
- security/openssh/patches/patch-sshd.8 1.1
- security/openssh/patches/patch-sshd.c 1.4
- security/openssh/patches/patch-sshpty.c 1.2
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Jul 9 16:14:24 UTC 2015
Modified Files:
pkgsrc/security/openssh: Makefile distinfo options.mk
pkgsrc/security/openssh/patches: patch-Makefile.in patch-auth-passwd.c
patch-auth-rhosts.c patch-auth.c patch-auth1.c patch-auth2.c
patch-channels.c patch-clientloop.c patch-config.h.in
patch-configure.ac patch-defines.h patch-includes.h
patch-openbsd-compat_openbsd-compat.h
patch-openbsd-compat_port-tun.c patch-platform.c patch-scp.c
patch-session.c patch-ssh.c patch-sshd.c patch-sshpty.c
Added Files:
pkgsrc/security/openssh/patches: patch-sshd.8
Removed Files:
pkgsrc/security/openssh/patches: patch-compat.c patch-configure
patch-sshconnect.c
Log Message:
Update openssh to 6.9.1 (OpenSSH 6.9p1) which contains security fix.
pkgsrc change:
* tcp_wrappers support was removed from release 6.7, but add it refering
FreeBSD's ports.
* hpn-patch is also based on FreeBSD's ports.
Security
--------
* ssh(1): when forwarding X11 connections with ForwardX11Trusted=no,
connections made after ForwardX11Timeout expired could be permitted
and no longer subject to XSECURITY restrictions because of an
ineffective timeout check in ssh(1) coupled with "fail open"
behaviour in the X11 server when clients attempted connections with
expired credentials. This problem was reported by Jann Horn.
* ssh-agent(1): fix weakness of agent locking (ssh-add -x) to
password guessing by implementing an increasing failure delay,
storing a salted hash of the password rather than the password
itself and using a timing-safe comparison function for verifying
unlock attempts. This problem was reported by Ryan Castellucci.
For more information, please refer release announce.
http://www.openssh.com/txt/release-6.9
http://www.openssh.com/txt/release-6.8
http://www.openssh.com/txt/release-6.7
---
Module Name: pkgsrc
Committed By: dsainty
Date: Fri Jul 10 07:00:29 UTC 2015
Modified Files:
pkgsrc/security/openssh: distinfo
Log Message:
Remove dangling stale hash for patch-sshconnect.c
To generate a diff of this commit:
cvs rdiff -u -r1.230 -r1.230.2.1 pkgsrc/security/openssh/Makefile
cvs rdiff -u -r1.91 -r1.91.2.1 pkgsrc/security/openssh/distinfo
cvs rdiff -u -r1.29 -r1.29.12.1 pkgsrc/security/openssh/options.mk
cvs rdiff -u -r1.3 -r1.3.12.1 \
pkgsrc/security/openssh/patches/patch-Makefile.in \
pkgsrc/security/openssh/patches/patch-auth2.c \
pkgsrc/security/openssh/patches/patch-config.h.in \
pkgsrc/security/openssh/patches/patch-configure.ac \
pkgsrc/security/openssh/patches/patch-platform.c \
pkgsrc/security/openssh/patches/patch-session.c \
pkgsrc/security/openssh/patches/patch-ssh.c \
pkgsrc/security/openssh/patches/patch-sshd.c
cvs rdiff -u -r1.1 -r1.1.18.1 \
pkgsrc/security/openssh/patches/patch-auth-passwd.c \
pkgsrc/security/openssh/patches/patch-auth-rhosts.c \
pkgsrc/security/openssh/patches/patch-openbsd-compat_port-tun.c \
pkgsrc/security/openssh/patches/patch-sshpty.c
cvs rdiff -u -r1.2 -r1.2.14.1 pkgsrc/security/openssh/patches/patch-auth.c \
pkgsrc/security/openssh/patches/patch-auth1.c \
pkgsrc/security/openssh/patches/patch-includes.h \
pkgsrc/security/openssh/patches/patch-scp.c
cvs rdiff -u -r1.1 -r1.1.4.1 pkgsrc/security/openssh/patches/patch-channels.c \
pkgsrc/security/openssh/patches/patch-clientloop.c
cvs rdiff -u -r1.1 -r0 pkgsrc/security/openssh/patches/patch-compat.c \
pkgsrc/security/openssh/patches/patch-sshconnect.c
cvs rdiff -u -r1.3 -r0 pkgsrc/security/openssh/patches/patch-configure
cvs rdiff -u -r1.2 -r1.2.12.1 pkgsrc/security/openssh/patches/patch-defines.h \
pkgsrc/security/openssh/patches/patch-openbsd-compat_openbsd-compat.h
cvs rdiff -u -r0 -r1.1.2.2 pkgsrc/security/openssh/patches/patch-sshd.8
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Home |
Main Index |
Thread Index |
Old Index