openssh

rpms/openssh

Fork 1

Commit Graph

Select branches

Hide Pull Requests

a9

c10s

c8

c8-beta

c8s

c9

c9-beta

c9s

c9s_cve_2023_38408

#1

changed/a9/openssh-8.7p1-38.el9.alma.1

changed/a9/openssh-8.7p1-38.el9.alma.2

changed/a9/openssh-8.7p1-38.el9_4.1.alma.1

imports/c10s/openssh-9.8p1-2.el10.0

imports/c10s/openssh-9.8p1-4.el10

imports/c8-beta/openssh-8.0p1-10.el8

imports/c8-beta/openssh-8.0p1-13.el8

imports/c8-beta/openssh-8.0p1-16.el8

imports/c8-beta/openssh-8.0p1-17.el8

imports/c8-beta/openssh-8.0p1-2.el8

imports/c8-beta/openssh-8.0p1-24.el8

imports/c8-beta/openssh-8.0p1-3.el8

imports/c8-beta/openssh-8.0p1-5.el8

imports/c8/openssh-7.8p1-4.el8

imports/c8/openssh-8.0p1-10.el8

imports/c8/openssh-8.0p1-13.el8

imports/c8/openssh-8.0p1-16.el8

imports/c8/openssh-8.0p1-17.el8

imports/c8/openssh-8.0p1-17.el8_7

imports/c8/openssh-8.0p1-19.el8_8

imports/c8/openssh-8.0p1-19.el8_9.2

imports/c8/openssh-8.0p1-24.el8

imports/c8/openssh-8.0p1-25.el8_10

imports/c8/openssh-8.0p1-3.el8

imports/c8/openssh-8.0p1-4.el8_1

imports/c8/openssh-8.0p1-5.el8

imports/c8/openssh-8.0p1-6.el8_4.2

imports/c8s/openssh-8.0p1-10.el8

imports/c8s/openssh-8.0p1-12.el8

imports/c8s/openssh-8.0p1-13.el8

imports/c8s/openssh-8.0p1-16.el8

imports/c8s/openssh-8.0p1-17.el8

imports/c8s/openssh-8.0p1-5.el8

imports/c8s/openssh-8.0p1-7.el8

imports/c8s/openssh-8.0p1-8.el8

imports/c8s/openssh-8.0p1-9.el8

imports/c9-beta/openssh-8.6p1-7.el9.1

imports/c9-beta/openssh-8.7p1-22.el9

imports/c9-beta/openssh-8.7p1-28.el9

imports/c9-beta/openssh-8.7p1-34.el9

imports/c9-beta/openssh-8.7p1-38.el9

imports/c9-beta/openssh-8.7p1-4.el9

imports/c9-beta/openssh-8.7p1-6.el9

imports/c9-beta/openssh-8.7p1-7.el9

imports/c9-beta/openssh-8.7p1-8.el9

imports/c9/openssh-8.7p1-10.el9_0

imports/c9/openssh-8.7p1-24.el9_1

imports/c9/openssh-8.7p1-28.el9

imports/c9/openssh-8.7p1-29.el9_2

imports/c9/openssh-8.7p1-30.el9_2

imports/c9/openssh-8.7p1-34.el9

imports/c9/openssh-8.7p1-34.el9_3.3

imports/c9/openssh-8.7p1-38.el9

imports/c9/openssh-8.7p1-38.el9_4.1

imports/c9/openssh-8.7p1-38.el9_4.4

imports/c9/openssh-8.7p1-8.el9

1b0cc8ff3b Correctly initialize ECDSA key structures from PKCS#11 Jakub Jelen 2019-01-14 13:27:08 +0100
ba99e00fe8 tests: Do not expect /var/log/secure to be there Jakub Jelen 2019-01-14 11:44:01 +0100
40d2a04909 CVE-2018-20685 (#1665786) Jakub Jelen 2019-01-14 10:48:59 +0100
322896958a Backport several fixes from 7_9 branch (#1665611) Jakub Jelen 2019-01-14 10:48:04 +0100
661c7c0582 gsskex: Dump correct option Jakub Jelen 2018-11-26 12:50:16 +0100
d6cc5f4740 Backport Match final so the crypto-policies do not break canonicalization (#1630166) Jakub Jelen 2018-11-26 10:16:04 +0100
a4c0a26cd4 openssh-7.9p1-2 + 0.10.3-6 Jakub Jelen 2018-11-14 09:57:17 +0100
57e280d1f4 Allow to disable RSA signatures with SHA-1 Jakub Jelen 2018-11-14 09:54:54 +0100
3ae9c1b0c1 Dump missing GSS options from client configuration Jakub Jelen 2018-11-14 09:44:48 +0100
03264b16f7 Reference the correct file in configuration file (#1643274) Jakub Jelen 2018-10-26 14:02:32 +0200
0b6cc18df0 Avoid segfault on kerberos authentication failure Jakub Jelen 2018-10-25 19:02:14 +0200
be6a344dcd Fix LDAP configure test (#1642414) Mattias Ellert 2018-10-24 13:30:27 +0200
9f2c8b948c openssh-7.9p1-1 + 0.10.3-6 Jakub Jelen 2018-10-19 11:46:02 +0200
e8876f1b1f Honor GSSAPIServerIdentity for GSSAPI Key Exchange (#1637167) Jakub Jelen 2018-10-17 13:04:00 +0200
6666c19414 Do not break gssapi-kex authentication method Jakub Jelen 2018-10-16 20:07:43 +0200
eaa7af2e41 rebase patches to openssh-7.9p1 Jakub Jelen 2018-10-12 15:54:56 +0200
8089081fa9 Improve the naming of the new kerberos configuration option Jakub Jelen 2018-10-12 13:34:58 +0200
6c9d993869 Follow the system-wide PATH settings Jakub Jelen 2018-10-03 11:00:09 +0200
f3715e62da auth-krb5: Avoid memory leaks and unread assignments Jakub Jelen 2018-09-25 16:34:19 +0200
97ee52c0a3 openssh-7.8p1-3 + 0.10.3-5 Jakub Jelen 2018-09-24 15:25:53 +0200
8ebb9915a3 Cleanup specfile comments Jakub Jelen 2018-09-24 15:25:40 +0200
84d3ff9306 Do not let OpenSSH control our hardening flags Jakub Jelen 2018-09-21 17:22:35 +0200
e815fba204 Ignore unknown parts of PKCS#11 URI Jakub Jelen 2018-09-21 15:50:04 +0200
55520c5691 Fix sandbox for conditional gssapi authentication (#1580017) Jakub Jelen 2018-09-21 09:50:42 +0200
178f3a4f56 Fix the cavs test and avoid it crashing (#1628962) Jakub Jelen 2018-09-14 16:53:22 +0200
8b9448c5ba openssh-7.8p1-2 + 0.10.3-5 Jakub Jelen 2018-08-29 18:37:23 +0200
dba154f20c Unbreak gssapi rekeying (#1624344) Jakub Jelen 2018-08-31 13:26:27 +0200
90edc0cc1d Properly allocate buffer for gsskex (#1624323) Jakub Jelen 2018-08-31 11:01:22 +0200
9409715f65 Unbreak scp between two IPv6 hosts (#1620333) Jakub Jelen 2018-08-29 16:47:38 +0200
c60b555ac2 Address issues reported by coverity Jakub Jelen 2018-08-29 12:56:24 +0200
4c36c2a9ee Drop unused environment variable Jakub Jelen 2018-08-29 12:55:36 +0200
afaf23f6c3 Drop unused patch Jakub Jelen 2018-08-28 10:51:37 +0200
bbf61daf97 openssh-7.8p1-1 + 0.10.3-5 Jakub Jelen 2018-08-24 22:40:20 +0200
01ba761e18 7.7p1-6 + 0.10.3-4 Jakub Jelen 2018-08-09 14:14:18 +0200
44e2032a0a fips: Show real list of kex algoritms in FIPS Jakub Jelen 2018-08-08 10:17:43 +0200
951e3ca00b Allow aes-GCM modes in FIPS Jakub Jelen 2018-08-07 18:08:08 +0200
baff4a61a7 fixup the coverity fix Jakub Jelen 2018-08-07 18:07:36 +0200
009e39709f coverity: RESOURCE_LEAK (CWE-772) Jakub Jelen 2018-07-18 15:27:43 +0200
600d4011b5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild Fedora Release Engineering 2018-07-13 15:11:56 +0000
e1d855438b 7.7p1-5 + 0.10.3-4 Jakub Jelen 2018-07-03 11:27:15 +0200
6c68d655b2 Disable manual reading of MOTD by default Jakub Jelen 2018-07-03 11:26:01 +0200
191bbb979e Drop the unused locks Jakub Jelen 2018-06-28 09:24:57 +0200
62f1736470 7.7p1-4 + 0.10.3-4 Jakub Jelen 2018-06-27 14:09:27 +0200
1176788778 Improve kerberos credential cache handling (#1566494) Jakub Jelen 2018-06-19 13:35:38 +0200
4ef6823ff4

Add pam_motd to the PAM stack Stephen Gallagher 2018-06-14 11:26:16 -0400
04ca5e7b0b 7.7p1-3 + 0.10.3-4 Jakub Jelen 2018-04-16 11:15:43 +0200
48cef7a0b8 Opening tun devices fails + other regressions in OpenSSH v7.7 fixed upstream Jakub Jelen 2018-04-13 09:37:48 +0200
836590e795 7.7p1-2 + 0.10.3-4 Jakub Jelen 2018-04-12 10:35:14 +0200
ab24bd6608 Do not break quotes parsing in configuration file (#1566295) Jakub Jelen 2018-04-12 10:26:26 +0200
b0815ca514 7.7p1-1 + 0.10.3-4 Jakub Jelen 2018-04-04 16:33:21 +0200
af10de8f01 Update to latest version of URI patch passing the new tests + rebase to 7.7 Jakub Jelen 2018-03-16 17:23:14 +0100
273086d13a Need a p11-kit to allow default pkcs11 proxy Jakub Jelen 2018-03-14 13:20:42 +0100
42fe13ff31 Allow loading more keys from single PKCS#11 module Jakub Jelen 2018-02-28 17:05:19 +0100
077597136c PKCS#11: Load public keys from ECDSA certificates Jakub Jelen 2018-02-16 17:26:53 +0100
aad4430f17 Print PKCS#11 URI also for ECDSA keys Jakub Jelen 2018-02-16 16:16:39 +0100
7e9748a2b5 PKCS#11: Support ECDSA keys and PKCS#11 URIs Jakub Jelen 2018-02-16 15:46:38 +0100
3cd4899257 Rebase to latest OpenSSH 7.7p1 (#1563223) Jakub Jelen 2018-03-27 16:52:07 +0200
1ce235ac38 tests/pam_ssh_agent_auth: Add a new sanity test Jakub Jelen 2018-03-12 16:48:08 +0100
6b2140deea tests/port-forwarding: Do not expect the nc will succeed Jakub Jelen 2018-03-12 15:52:51 +0100
b4cbb0fe23 tests/port-forwarding: Do not require rhts makefile Jakub Jelen 2018-03-12 14:41:21 +0100
830acce379 revert part of the nss removal from LDAP Jakub Jelen 2018-03-06 15:14:57 +0100
cbb6ca5123 openssh-7.6p1-7 + 0.10.3-3 Jakub Jelen 2018-03-06 13:55:29 +0100
c8f1381d11 Remove bogus nss linking Jakub Jelen 2018-03-06 14:33:21 +0100
92b8e55bea Crypto policies changed path Jakub Jelen 2018-03-06 13:53:17 +0100
bd5b563008 Require crypto policies Jakub Jelen 2018-03-06 13:53:02 +0100
c2a9e41702 Recommend crypto policies also for a server Jakub Jelen 2018-02-16 15:56:14 +0100
07c951f665 Require gcc Jakub Jelen 2018-02-19 12:09:12 +0100
a6b5c2c42d

Remove %clean section Igor Gnatenko 2018-02-14 08:27:35 +0100
5f6f10859d Remove BuildRoot definition Igor Gnatenko 2018-02-13 23:58:21 +0100
13efdb1d7f - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild Fedora Release Engineering 2018-02-08 17:49:28 +0000
6a6c2bc3ab We need systemd-devel for sdnotify() Jakub Jelen 2018-02-01 16:30:07 +0100
0780f33c5f removal of systemd-units and conforming to packaging guidelines Jakub Jelen 2018-01-27 10:57:04 +0100
bb4b7b77fc openssh-7.6p1-6 + 0.10.3-3 Jakub Jelen 2018-01-26 16:26:50 +0100
f61eaad2bd Rebuild to work around gcc bug leading to sshd miscompilation (#1538648) Florian Weimer 2018-01-25 16:48:03 +0100
c45ece5fe8 Do not audit partial auth failures Jakub Jelen 2018-01-22 12:22:17 +0100
6996c6f503 Do not audit passsword authentication, if handled by PAM Jakub Jelen 2018-01-22 12:21:00 +0100
9b05c6d476 USER_AUTH: Remove bogus rport, add required grantors Jakub Jelen 2018-01-22 12:18:45 +0100
667e6f013f Do not audit final success (#1534577) Jakub Jelen 2018-01-22 11:16:18 +0100
57349a88a8 Use correct audit event for pubkey auth Jakub Jelen 2018-01-22 11:15:15 +0100
427beb2f9e

Rebuilt for switch to libxcrypt Björn Esser 2018-01-20 23:07:25 +0100
b1ec43ef50 Add missing header to make it build (related to #1534577) Jakub Jelen 2018-01-19 10:45:55 +0100
0f4b4ccdea Audit correctly the res= after upstream refactoring Jakub Jelen 2018-01-19 10:18:51 +0100
38b67ad605 Avoid undefined TRUE/FALSE in ldap patch to build in rawhide Jakub Jelen 2018-01-17 10:49:32 +0100
4d97279349 openssh-7.6p1-5 + 0.10.3-3 Jakub Jelen 2018-01-17 10:13:18 +0100
f284c5eb83 Do not attempt to pass hostnames to audit (inconsistency) (#1534577) Jakub Jelen 2018-01-17 10:08:26 +0100
32dc9bd1cd Drop unused function from audit Jakub Jelen 2018-01-16 16:24:27 +0100
316553ade0 Remove TCP wrappers support (#1530163) Jakub Jelen 2018-01-16 15:06:23 +0100
871dc3ed3e openssh-7.6p1-4 + 0.10.3-3 Jakub Jelen 2017-12-14 10:23:37 +0100
17cd512319 Whitelist gettid() syscall for systemd (cleanup procedure?) Jakub Jelen 2017-12-12 14:19:35 +0100
1f2a7f3926 openssh-7.6p1-3 + 0.10.3-3 Jakub Jelen 2017-12-11 11:54:38 +0100
fde6b96b35 Avoid gcc warnings about uninitialized variables Jakub Jelen 2017-11-24 15:48:45 +0100
217da75d53 Do not segfault for repetitive cipher_free() from audit (#1524233) Jakub Jelen 2017-11-24 14:49:00 +0100
eef660e534 7.6p1-2 + 0.10.3-3 Jakub Jelen 2017-11-22 08:57:03 +0100
e3f4c1243d Do not build all the binaries against libldap Jakub Jelen 2017-11-15 10:14:33 +0100
2087929a90 Do not segfault for ECC keys in PKCS#11 Jakub Jelen 2017-11-14 12:53:12 +0100
a464c88ee6 forgotten sources Jakub Jelen 2017-11-07 16:49:23 +0100
8fc2fee4e4 7.6p1-1 + 0.10.3-3 Jakub Jelen 2017-10-19 16:24:27 +0200
cdc735a59b Make sure we audit properly from the new code Jakub Jelen 2017-10-19 16:06:27 +0200
e0e7ed914b Address issues of another PR#48 review Jakub Jelen 2017-10-18 14:48:25 +0200
c08aa4b8b1 Fix after-release bug in PermitOpen (posted on ML) Jakub Jelen 2017-10-18 14:40:59 +0200