~x-mark/openssh:xenial-hpn-14.10

Last commit made on 2017-07-12
Get this branch:
git clone -b xenial-hpn-14.10 https://git.launchpad.net/~x-mark/openssh
Only Mark Wagner can upload to this branch. If you are Mark Wagner please log in for upload directions.

Branch merges

Branch information

Name:
xenial-hpn-14.10
Repository:
lp:~x-mark/openssh

Recent commits

f9295b2... by Mark Wagner <email address hidden> on 2017-07-12

Add vendor version of patches

236219a... by Mark Wagner <email address hidden> on 2017-07-11

Add HPN patches

5bf1222... by Christian Ehrhardt  on 2017-03-15

Import patches-applied version 1:7.2p2-4ubuntu2.2 to applied/ubuntu/xenial-proposed

Imported using usd-importer.

Publish parent: 80ca4261da4b53dfb44624be35163ef1684bc919
Changelog parent: 63b59b73e9c02308c96c567974556f4dd9227c54
Unapplied parent: 3af3573ae99434ff12ddb4307399a01e3abc11f4

New changelog entries:
  * Fix ssh-keygen -H accidentally corrupting known_hosts that contained
    already-hashed entries (LP: #1668093).
  * Fix ssh-keyscan to correctly hash hosts with a port number (LP: #1670745).

3af3573... by Christian Ehrhardt  on 2017-03-15

Import patches-unapplied version 1:7.2p2-4ubuntu2.2 to ubuntu/xenial-proposed

Imported using usd-importer.

Publish parent: 4c3f940db867435302630b0aea4b17cc6271cc94
Changelog parent: 999352c9112a557965632313ee43e33c8ba5c8ea

New changelog entries:
  * Fix ssh-keygen -H accidentally corrupting known_hosts that contained
    already-hashed entries (LP: #1668093).
  * Fix ssh-keyscan to correctly hash hosts with a port number (LP: #1670745).

63b59b7... by Marc Deslauriers on 2016-08-11

Import patches-applied version 1:7.2p2-4ubuntu2.1 to applied/ubuntu/xenial-security

Imported using usd-importer.

Changelog parent: 80ca4261da4b53dfb44624be35163ef1684bc919
Unapplied parent: ab07c9ac9063acfba8439c343feaa572f9893b29

New changelog entries:
  * SECURITY UPDATE: user enumeration via covert timing channel
    - debian/patches/CVE-2016-6210-1.patch: determine appropriate salt for
      invalid users in auth-passwd.c, openbsd-compat/xcrypt.c.
    - debian/patches/CVE-2016-6210-2.patch: mitigate timing of disallowed
      users PAM logins in auth-pam.c.
    - debian/patches/CVE-2016-6210-3.patch: search users for one with a
      valid salt in openbsd-compat/xcrypt.c.
    - CVE-2016-6210
  * SECURITY UPDATE: denial of service via long passwords
    - debian/patches/CVE-2016-6515.patch: skip passwords longer than 1k in
      length in auth-passwd.c.
    - CVE-2016-6515

999352c... by Marc Deslauriers on 2016-08-11

Import patches-unapplied version 1:7.2p2-4ubuntu2.1 to ubuntu/xenial-security

Imported using usd-importer.

Publish parent: 61aa710bc8b0af8fd5a0ecb5671b32a588ab29f4
Changelog parent: 4c3f940db867435302630b0aea4b17cc6271cc94

New changelog entries:
  * SECURITY UPDATE: user enumeration via covert timing channel
    - debian/patches/CVE-2016-6210-1.patch: determine appropriate salt for
      invalid users in auth-passwd.c, openbsd-compat/xcrypt.c.
    - debian/patches/CVE-2016-6210-2.patch: mitigate timing of disallowed
      users PAM logins in auth-pam.c.
    - debian/patches/CVE-2016-6210-3.patch: search users for one with a
      valid salt in openbsd-compat/xcrypt.c.
    - CVE-2016-6210
  * SECURITY UPDATE: denial of service via long passwords
    - debian/patches/CVE-2016-6515.patch: skip passwords longer than 1k in
      length in auth-passwd.c.
    - CVE-2016-6515

ab07c9a... by Marc Deslauriers on 2016-08-11

upstream commit

Gbp-Pq: CVE-2016-6515.patch.

07f64f8... by Marc Deslauriers on 2016-08-11

Search users for one with a valid salt.

Gbp-Pq: CVE-2016-6210-3.patch.

3fc5fd1... by Marc Deslauriers on 2016-08-11

Mitigate timing of disallowed users PAM logins.

Gbp-Pq: CVE-2016-6210-2.patch.

2b4d888... by Marc Deslauriers on 2016-08-11

Determine appropriate salt for invalid users.

Gbp-Pq: CVE-2016-6210-1.patch.