lp:ubuntu/quantal-updates/libssh
- Get this branch:
- bzr branch lp:ubuntu/quantal-updates/libssh
Branch merges
Branch information
Recent revisions
- 23. By Marc Deslauriers
-
* SECURITY UPDATE: PRNG state reuse on forking servers
- debian/patches/ CVE-2014- 0017.patch: force reseed after fork in
include/libssh/ wrapper. h, src/bind.c, src/libcrypto.c,
src/libgcrypt. c.
- CVE-2014-0017 - 22. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via NULL dereference
- debian/patches/ CVE-2013- 0176.patch: properly handle client that
doesn't send a matching key in src/server.c.
- CVE-2013-0176 - 21. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible code execution via
multiple double free flaws
- debian/patches/ CVE-2012- 4559.patch: properly do frees in src/agent.c,
src/channels.c, src/sftp.c.
- CVE-2012-4559
* SECURITY UPDATE: denial of service and possible code execution via
multiple buffer overflows
- debian/patches/ CVE-2012- 4560.patch: properly calculate sizes in
src/misc.c.
- CVE-2012-4560
* SECURITY UPDATE: denial of service and possible code execution via
multiple invalid free flaws
- debian/patches/ CVE-2012- 4561.patch: don't use after free in
src/keyfiles.c, properly zero structs in src/keys.c.
- CVE-2012-4561
* SECURITY UPDATE: denial of service and possible code execution via
multiple improper overflow checks
- debian/patches/ CVE-2012- 4562.patch: do proper overflow checks in
src/buffer.c, src/dh.c, src/string.c.
- CVE-2012-4562 - 19. By Laurent Bigonville
-
* New upstream release
- Fix bug with ssh_channel_write (Closes: #631950)
* debian/watch: Use new tarball location - 18. By Laurent Bigonville
-
* debian/
patches/ 0002-Check- for-NULL- pointers- in-string- c.patch:
Consolidate patch (Should fix previous REJECT)
* Support multiarch spec - 17. By Laurent Bigonville
-
* Upload to unstable
* debian/control: Add texlive-fonts-recommend ed to Build-Depends-Indep
(Closes: #608319) - 15. By Laurent Bigonville
-
d/p/0002-
socket- Fixed-uninitial ized-fd- revents- member. patch:
Fix uninitialized memory use (Closes: #606347) - 14. By Laurent Bigonville
-
* Add d/p/0001-
socket. c-Fixed- setting- max_fd- which-breaks- ssh_selec. patch:
Fix slow response in Remmina SSH (Closes: #599687, LP: #663777)
* debian/control: Bump Standards-Version to 3.9.1 (no futher changes)
* debian/copyright: Update copyright file to please lintian
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/raring/libssh