Commit Graph

  • 05bc93847e Bug #2281 resolved upstream Jakub Jelen 2016-07-25 14:56:34 +0200
  • 178ce15f5a UTF-8 banners resolved by upstream bug #2058 Jakub Jelen 2016-07-25 14:54:30 +0200
  • 14320ca590 The upstream bug #2257 is fixed Jakub Jelen 2016-07-25 14:38:39 +0200
  • 82bfd19e51 openssh-7.2p2-11 + 0.10.2-3 Jakub Jelen 2016-07-26 13:01:28 +0200
  • 6a7dd92929 Remove legacy sshd-keygen (#1359762) Revert "Add legacy sshd-keygen for anaconda (#1331077)" Jakub Jelen 2016-07-26 12:57:48 +0200
  • 793bc4b1cc Remove slogin symlinks (#1359762) Revert "Restore slogin symlinks" Jakub Jelen 2016-07-26 12:56:55 +0200
  • b4df5ebb8d Rework SELinux context handling with chroot using libcap-ng (#1357860) Jakub Jelen 2016-07-20 16:18:46 +0200
  • 9dc741314f openssh-7.2p2-10 + 0.10.2-3 Jakub Jelen 2016-07-18 13:55:58 +0200
  • 1057900209 Prevent user enumeration via timing channel (CVE-2016-6210) Jakub Jelen 2016-07-18 13:30:36 +0200
  • 209c7a8aea Expose more information to PAM Jakub Jelen 2016-07-18 12:38:42 +0200
  • 9864973c69 Make closefrom() ignore softlinks to the /dev/ devices on s390 Jakub Jelen 2016-07-18 12:26:15 +0200
  • a49441fa52 openssh-7.2p2-9 + 0.10.2-3 Jakub Jelen 2016-07-01 09:07:18 +0200
  • a8068249cb Bad condition for UseLogin check (#1350347) Jakub Jelen 2016-06-27 10:33:57 +0200
  • 5a67d51d0f openssh-7.2p2-8 + 0.10.2-3 Jakub Jelen 2016-06-24 11:58:32 +0200
  • 8cf031f736 pam_ssh_agent_auth: Fix conflict bewteen two getpwuid() calls (#1349551) Jakub Jelen 2016-06-24 11:41:45 +0200
  • d8ffa911e3 SFTP server forced permissions should restore umask Jakub Jelen 2016-06-23 16:23:32 +0200
  • f22e5dcaeb pselect6 is already in upstream seccomp filter Jakub Jelen 2016-06-17 13:39:03 +0200
  • 186bf3858e UseLogin yes is not supported in Fedora Jakub Jelen 2016-06-17 13:31:03 +0200
  • c06fe506bc seccomp filter for MIPS (#1195065) Jakub Jelen 2016-06-17 13:26:54 +0200
  • ad928ac7d1 Mandatory Perl build-requires added <https://fedoraproject.org/wiki/Changes/Build_Root_Without_Perl> Petr Písař 2016-06-24 10:03:17 +0200
  • ba8f38935c openssh-7.2p2-7 Jakub Jelen 2016-06-06 10:24:35 +0200
  • f6a096caf2 Build seccomp filter on ppc64(le) architecture (#1195065) Jakub Jelen 2016-06-06 10:16:31 +0200
  • 1144aef1d1 Comments for patches, merge ssh_config from localdomain to redhat patch (ssh_config related) Jakub Jelen 2016-06-03 16:22:59 +0200
  • 84d3989ec8 Coverity -> FIPS patch Jakub Jelen 2016-06-03 12:40:12 +0200
  • 31536c7ac6 Move linux_seed() header from coverity to entropy patch Jakub Jelen 2016-06-03 10:56:54 +0200
  • f2868287aa rebase x11 patch to clean up coverity patch Jakub Jelen 2016-06-03 10:44:32 +0200
  • ea9421342e Coverity: dereference in pam_ssh_agent_auth Upstream: https://sourceforge.net/p/pamsshagentauth/bugs/22/ Jakub Jelen 2016-06-03 09:49:20 +0200
  • d78d347c11 Check for real location of .k5login file (#1328243) Jakub Jelen 2016-06-03 09:28:29 +0200
  • 8dd0608e77 Regression in certificate-based authentication (#1333498) Jakub Jelen 2016-05-06 09:25:20 +0200
  • 991b66246f openssh-7.2p2-6 + 0.10.2-3 Jakub Jelen 2016-04-29 13:57:45 +0200
  • 0b5300a59c Add legacy sshd-keygen for anaconda (#1331077) Jakub Jelen 2016-04-29 13:34:06 +0200
  • 1380564732 openssh-7.2p2-5 + 0.10.2-3 Jakub Jelen 2016-04-22 14:52:57 +0200
  • b7de610db3 Fix typo about sshd-keygen in sysconfig (#1325535) Jakub Jelen 2016-04-18 14:47:10 +0200
  • cf4e3a1844 Fix for CVE-2015-8325 (#1328013) Jakub Jelen 2016-04-18 12:39:11 +0200
  • 58d2868dfe openssh-7.2p2-4 + 0.10.2-3 Jakub Jelen 2016-04-15 17:56:43 +0200
  • 5489ace8dc Add sshd-keygen.target to abstract key creation from sshd.service and sshd@.service (#1325535) Jakub Jelen 2016-04-15 15:19:02 +0200
  • 461b3af818 Remove unused sshd init script Jakub Jelen 2016-04-15 14:13:55 +0200
  • 32a74888d5 openssh-7.2p2-3 + 0.10.2-3 Jakub Jelen 2016-04-13 13:44:58 +0200
  • 00c7b75439 Make sshd-keygen comply with packaging guidelines (#1325535) Jakub Jelen 2016-03-16 09:57:22 +0100
  • 3d2c14680b Soft-deny socket() syscall in seccomp sandbox (#1324493) Jakub Jelen 2016-04-11 16:11:59 +0200
  • 0509c6c977 Remove *sha1 Kex in FIPS mode (#1324493) Jakub Jelen 2016-04-11 13:16:12 +0200
  • 117a730ded Remove *gcm ciphers in FIPS mode (#1324493) Jakub Jelen 2016-04-11 10:34:12 +0200
  • f7e56a52db openssh-7.2p2-2 + 0.10.2-3 Jakub Jelen 2016-04-05 16:13:59 +0200
  • fc0cf7f8d5 Fix GSSAPI Key Exchange for older clients (#1323622) Jakub Jelen 2016-04-05 16:13:17 +0200
  • bda184b249 pam_ssh_agent_auth: prevent using MD5 in Fips mode Jakub Jelen 2016-03-16 09:40:35 +0100
  • 53c9992786 Drop init scripts dependency from sshd-keygen (#1317722) Jakub Jelen 2016-03-15 09:05:38 +0100
  • 9163ba11f1 openssh-7.2p2-1 + 0.10.2-3 Jakub Jelen 2016-03-10 13:36:41 +0100
  • 28ce052525 Audit: Cleanup for upstream proposal Jakub Jelen 2016-03-04 14:33:02 +0100
  • 0bdae3b8df openssh-7.2p1-1 + 0.10.2-2 Jakub Jelen 2016-03-03 17:59:53 +0100
  • e762f7265e Restore slogin symlinks Jakub Jelen 2016-03-03 11:39:50 +0100
  • 13bf5bef36 Forgotten rebased FIPS patch Jakub Jelen 2016-02-29 15:16:45 +0100
  • 13073f8d9c openssh-7.2p1-1 (#1312870) Jakub Jelen 2016-02-19 14:42:33 +0100
  • 46445f1c7a openssh-7.1p2-4 + 0.10.2-1 Jakub Jelen 2016-02-24 09:55:56 +0100
  • 44fc97266b Audit race condition resolved (#1308295) Jakub Jelen 2016-02-22 11:47:20 +0100
  • 7b15444065 Fix X11 forwarding CVE according to upstream Jakub Jelen 2016-02-12 11:43:31 +0100
  • 4fdc3c59c4 Fix problem when running without privsep (#1303910) Jakub Jelen 2016-02-12 11:42:08 +0100
  • 700da17374 Remove hard glob limit since the CVE introducing this one is unrelated. Jakub Jelen 2016-02-02 08:33:10 +0100
  • b2b837ad97 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild Fedora Release Engineering 2016-02-04 11:34:23 +0000
  • 8ddd3edcd8 openssh-7.1p2-3 + 0.10.2-1 Jakub Jelen 2016-01-30 01:17:09 +0100
  • ca79709ade Silently disable X11 forwarding Jakub Jelen 2016-01-30 01:12:38 +0100
  • c08255b7b1 Fix pam_ssh_agent_auth segfaults with non-accepted keys (#1303036) Jakub Jelen 2016-01-30 01:11:32 +0100
  • d1b43a2865 Update sshd service file to forking (as #1291172) Jakub Jelen 2016-01-26 13:54:53 +0100
  • 7adf5f4c63 Missing pam_ssh_agent_auth sources Jakub Jelen 2016-01-26 09:10:27 +0100
  • 6c2eb5e22d openssh-7.1p2-2 + 0.10.2-1 Jakub Jelen 2016-01-25 14:33:19 +0100
  • 38c7737421 Remove defattr from spec file Jakub Jelen 2016-01-26 08:45:54 +0100
  • 733cea720e CVE-2016-1908: Prevent possible fallback from untrusted to trusted X11 forwarding Jakub Jelen 2016-01-25 14:13:01 +0100
  • 87ab5fc4af Reabse to latest release of pam_ssh_agent_auth with preserving current functionality Jakub Jelen 2016-01-22 17:22:39 +0100
  • 7bc64374b0 openssh-7.1p2-1 + 0.9.2-9 Jakub Jelen 2016-01-14 16:11:06 +0100
  • b2191db92e openssh-7.1p1-7 + 0.9.2-8 Jakub Jelen 2016-01-12 12:57:55 +0100
  • af94f46861 Fix condition to run sshd-keygen Jakub Jelen 2016-01-12 13:09:05 +0100
  • 06b1d5330a Make ssh-keysign world readable (#1296724) Jakub Jelen 2016-01-08 13:22:09 +0100
  • f26cd8d6ee Update ssh-agent permissions (#1296724) Jakub Jelen 2016-01-08 11:27:02 +0100
  • 7c5d0a686c Make sure the semantics of %global macro stays the same as before a0e252571b Jakub Jelen 2016-01-08 09:15:52 +0100
  • da62b78673 Do not check for openssl based keys if built without openssl Jakub Jelen 2016-01-05 12:47:04 +0100
  • 62897e51d6 Do not set default values for GSSAPI when building without GSSAPI Jakub Jelen 2016-01-05 12:41:38 +0100
  • e1b19de52a Fix wrong handling of LEGACY environment variable Jakub Jelen 2016-01-05 12:39:40 +0100
  • a0e252571b Change %define to %global according to packaging guidelines Jakub Jelen 2016-01-04 10:41:25 +0100
  • c45d147a86 openssh-7.1p1-6 + 0.9.2-8 Jakub Jelen 2015-12-18 13:18:20 +0100
  • f6bd29aaca Preserve IUTF8 tty mode flag over ssh connections (#1270248) Jakub Jelen 2015-12-18 12:02:14 +0100
  • c9e7e79685 Compatibility SSH_COPY_ID_LEGACY for ssh-copy-id Jakub Jelen 2015-12-18 14:33:17 +0100
  • 86f52d4e69 Rebase downstream patches of ssh-copy-id into one from upstream Jakub Jelen 2015-12-11 14:27:14 +0100
  • d9d9575f00 GSSAPI Key Exchange documentation improvements Jakub Jelen 2015-12-10 15:37:46 +0100
  • f33aef5318 Remove unused patches Jakub Jelen 2015-12-08 14:21:12 +0100
  • 5410d2d3a7 Do not require sysconfig file to start service (#1279521) Jakub Jelen 2015-11-09 17:10:15 +0100
  • ef86a312db openssh-7.1p1-5 + 0.9.2-8 Jakub Jelen 2015-11-04 10:18:50 +0100
  • b6d4dc0a6f Do not set user context too many times for root logins (#1269072) Jakub Jelen 2015-11-04 10:17:32 +0100
  • fa54d5472d openssh-7.1p1-4 + 0.9.2-8 Jakub Jelen 2015-10-22 14:52:39 +0200
  • aa9a7754ed Audit implicit mac, if mac is covered in cipher (#1271694) Jakub Jelen 2015-10-16 09:58:42 +0200
  • 0ebe96b604 Handle root logins the same way as other users (#1269072) Jakub Jelen 2015-10-16 09:41:20 +0200
  • 22a08c3da4 Review SELinux user context handling after authentication (#1269072) Jakub Jelen 2015-10-15 16:12:18 +0200
  • 8395bb78d0 Increase size limit of glob structures in sftp Jakub Jelen 2015-09-30 15:27:08 +0200
  • a80c277795 openssh-7.1p1-3 + 0.9.2-8 Jakub Jelen 2015-09-25 14:10:39 +0200
  • a01bd486f0 Fix obsolete usage of SELinux constants (#1261496) Jakub Jelen 2015-09-18 15:31:51 +0200
  • bf69b47630 Allow gss-keyex root login when without-password is set (#2456) Jakub Jelen 2015-09-24 11:23:38 +0200
  • 6bf47e3d35 Having no keys is not fatal in gssapi key exchange (#1261414) Jakub Jelen 2015-09-23 16:06:46 +0200
  • 9a804fa266 Apply GSSAPI key exchange methods in client offered list (#1261414) Jakub Jelen 2015-09-23 14:16:43 +0200
  • c6ba7b1e09 Return back forgotten patch which prevent connection using GSSAPI key exchange (#1261414) Jakub Jelen 2015-09-17 18:11:59 +0200
  • 812f08d95e Provide full RELRO and PIE form askpass helper (#1264036) Jakub Jelen 2015-09-18 10:22:53 +0200
  • 3e5d955bcb Fix FIPS mode for DH kex (#1260253) Jakub Jelen 2015-09-11 11:32:37 +0200
  • 98262158d8 openssh-7.1p1-2 + 0.9.2-8 Jakub Jelen 2015-09-09 14:29:31 +0200