lp:ubuntu/quantal-updates/libssh

Created by Ubuntu Package Importer on 2012-11-26 and last modified on 2014-03-10
Get this branch:
bzr branch lp:ubuntu/quantal-updates/libssh
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

23. By Marc Deslauriers on 2014-03-10

* SECURITY UPDATE: PRNG state reuse on forking servers
  - debian/patches/CVE-2014-0017.patch: force reseed after fork in
    include/libssh/wrapper.h, src/bind.c, src/libcrypto.c,
    src/libgcrypt.c.
  - CVE-2014-0017

22. By Marc Deslauriers on 2013-01-25

* SECURITY UPDATE: denial of service via NULL dereference
  - debian/patches/CVE-2013-0176.patch: properly handle client that
    doesn't send a matching key in src/server.c.
  - CVE-2013-0176

21. By Marc Deslauriers on 2012-11-22

* SECURITY UPDATE: denial of service and possible code execution via
  multiple double free flaws
  - debian/patches/CVE-2012-4559.patch: properly do frees in src/agent.c,
    src/channels.c, src/sftp.c.
  - CVE-2012-4559
* SECURITY UPDATE: denial of service and possible code execution via
  multiple buffer overflows
  - debian/patches/CVE-2012-4560.patch: properly calculate sizes in
    src/misc.c.
  - CVE-2012-4560
* SECURITY UPDATE: denial of service and possible code execution via
  multiple invalid free flaws
  - debian/patches/CVE-2012-4561.patch: don't use after free in
    src/keyfiles.c, properly zero structs in src/keys.c.
  - CVE-2012-4561
* SECURITY UPDATE: denial of service and possible code execution via
  multiple improper overflow checks
  - debian/patches/CVE-2012-4562.patch: do proper overflow checks in
    src/buffer.c, src/dh.c, src/string.c.
  - CVE-2012-4562

20. By Colin Watson on 2012-10-05

Rebuild for new armel compiler default of ARMv5t.

19. By Laurent Bigonville on 2011-09-19

* New upstream release
  - Fix bug with ssh_channel_write (Closes: #631950)
* debian/watch: Use new tarball location

18. By Laurent Bigonville on 2011-06-15

* debian/patches/0002-Check-for-NULL-pointers-in-string-c.patch:
  Consolidate patch (Should fix previous REJECT)
* Support multiarch spec

17. By Laurent Bigonville on 2011-03-13

* Upload to unstable
* debian/control: Add texlive-fonts-recommended to Build-Depends-Indep
  (Closes: #608319)

16. By St├ęphane Graber on 2011-04-04

releasing version 0.4.5-3ubuntu1

15. By Laurent Bigonville on 2010-12-11

d/p/0002-socket-Fixed-uninitialized-fd-revents-member.patch:
Fix uninitialized memory use (Closes: #606347)

14. By Laurent Bigonville on 2010-10-20

* Add d/p/0001-socket.c-Fixed-setting-max_fd-which-breaks-ssh_selec.patch:
  Fix slow response in Remmina SSH (Closes: #599687, LP: #663777)
* debian/control: Bump Standards-Version to 3.9.1 (no futher changes)
* debian/copyright: Update copyright file to please lintian

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/raring/libssh
This branch contains Public information 
Everyone can see this information.

Subscribers