Halaman utama Jelajahi Bantuan
Daftar Masuk
PUBLIC_REPOS
/
buildroot
cermin dari git://git.buildroot.net/buildroot
2
1
Fork 0
Berkas
Jelajahi Sumber

openssh: security bump to version 7.8

Fixes CVE-2018-15473: user enumeration vulnerability due to not delaying
bailout for an invalid authenticating user until after the packet
containing the request has been fully parsed.

Some OpenSSH developers don't consider this a security issue:

  https://lists.mindrot.org/pipermail/openssh-unix-dev/2018-August/037138.html

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Baruch Siach 7 tahun lalu
induk
59af8a3a22
melakukan
5ef5b39bd4
2 mengubah file dengan 3 tambahan dan 3 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 2 2
      package/openssh/openssh.hash
  2. 1 1
      package/openssh/openssh.mk

+ 2 - 2
package/openssh/openssh.hash
Tampilan Berkas 

@@ -1,4 +1,4 @@
 
-# From http://www.openssh.com/txt/release-7.7 (base64 encoded)
 
-sha256 d73be7e684e99efcd024be15a30bffcbe41b012b2f7b3c9084aed621775e6b8f  openssh-7.7p1.tar.gz
 
+# From http://www.openssh.com/txt/release-7.8 (base64 encoded)
 
+sha256 1a484bb15152c183bb2514e112aa30dd34138c3cfb032eee5490a66c507144ca  openssh-7.8p1.tar.gz
 
 # Locally calculated
 
 sha256 05a4c25ef464e19656c5259bd4f4da8428efab01044f3541b79fbb3ff209350f  LICENCE

+ 1 - 1
package/openssh/openssh.mk
Tampilan Berkas 

@@ -4,7 +4,7 @@
 
 #
 
 ################################################################################
 
 
-OPENSSH_VERSION = 7.7p1
 
+OPENSSH_VERSION = 7.8p1
 
 OPENSSH_SITE = http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable
 
 OPENSSH_LICENSE = BSD-3-Clause, BSD-2-Clause, Public Domain
 
 OPENSSH_LICENSE_FILES = LICENCE