This project is archived. Its data is read-only. This project is read-only.

Commit 0916daef authored Aug 25, 2015 by Gustavo Zacarias Committed by Peter Korsgaard Aug 25, 2015

openssh: security bump to version 7.1p1



Fixes:
CVE-2015-6563 - Fixed a privilege separation weakness related to PAM
support.
CVE-2015-6564 - Fixed a use-after-free bug related to PAM support that
was reachable by attackers who could compromise the pre-authentication
process for remote code exectuion.
CVE-2015-6565 - incorrectly set TTYs to be world-writable.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

parent 627a1044

package/openssh/openssh.hash

+3 −2

Original line number	Diff line number	Diff line
		# Locally calculated after checking pgp signature
		# Also from http://www.openssh.com/txt/release-6.9 (sha256 is base64 encoded)
		sha256 6e074df538f357d440be6cf93dc581a21f22d39e236f217fcd8eacbb6c896cfe openssh-6.9p1.tar.gz
		# Also from http://www.openssh.com/txt/release-7.1 (sha256 is base64 encoded)
		# Decode with -> echo <encoded stuff>\|base64 -d\|hexdump -v -e '/1 "%02x"'
		sha256 fc0a6d2d1d063d5c66dffd952493d0cda256cad204f681de0f84ef85b2ad8428 openssh-7.1p1.tar.gz

package/openssh/openssh.mk

+1 −1

Original line number	Diff line number	Diff line
		@@ -4,7 +4,7 @@
		#
		################################################################################

		OPENSSH_VERSION = 6.9p1
		OPENSSH_VERSION = 7.1p1
		OPENSSH_SITE = http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable
		OPENSSH_LICENSE = BSD-3c BSD-2c Public Domain
		OPENSSH_LICENSE_FILES = LICENCE