Revisions of libssh2_org
buildservice-autocommit
accepted
request 1164239
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 78)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 1164237
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 77)
- Fix an issue with Encrypt-then-MAC family. [bsc#1221622] * Test the ETM feature in the remote end's configuration when receiving data. Upstream issue: #1331. * Add libssh2_org-ETM-remote.patch - Always add the KEX pseudo-methods "ext-info-c" and "kex-strict-c-v00@openssh.com" when configuring custom method list. [bsc#1218971, CVE-2023-48795] * The strict-kex extension is announced in the list of available KEX methods. However, when the default KEX method list is modified or replaced, the extension is not added back automatically. * Add libssh2_org-CVE-2023-48795-ext.patch
buildservice-autocommit
accepted
request 1134106
from
David Anes (david.anes)
(revision 76)
baserev update by copy to link target
David Anes (david.anes)
accepted
request 1134032
from
Otto Hollmann (ohollmann)
(revision 75)
- Security fix: [bsc#1218127, CVE-2023-48795] * Add 'strict KEX' to fix CVE-2023-48795 "Terrapin Attack" * Add libssh2_org-CVE-2023-48795.patch
buildservice-autocommit
accepted
request 1094135
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 74)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 1094134
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 73)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 1093948
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 72)
- Update to 1.11.0: * Enhancements and bugfixes - Adds support for encrypt-then-mac (ETM) MACs - Adds support for AES-GCM crypto protocols - Adds support for sk-ecdsa-sha2-nistp256 and sk-ssh-ed25519 keys - Adds support for RSA certificate authentication - Adds FIDO support with *_sk() functions - Adds RSA-SHA2 key upgrading to OpenSSL, WinCNG, mbedTLS, OS400 backends - Adds Agent Forwarding and libssh2_agent_sign() - Adds support for Channel Signal message libssh2_channel_signal_ex() - Adds support to get the user auth banner message libssh2_userauth_banner() - Adds LIBSSH2_NO_{MD5, HMAC_RIPEMD, DSA, RSA, RSA_SHA1, ECDSA, ED25519, AES_CBC, AES_CTR, BLOWFISH, RC4, CAST, 3DES} options - Adds direct stream UNIX sockets with libssh2_channel_direct_streamlocal_ex() - Adds wolfSSL support to CMake file - Adds mbedTLS 3.x support - Adds LibreSSL 3.5 support - Adds support for CMake "unity" builds - Adds CMake support for building shared and static libs in a single pass - Adds symbol hiding support to CMake - Adds support for libssh2.rc for all build tools - Adds .zip, .tar.xz and .tar.bz2 release tarballs - Enables ed25519 key support for LibreSSL 3.7.0 or higher - Improves OpenSSL 1.1 and 3 compatibility - Now requires OpenSSL 1.0.2 or newer - Now requires CMake 3.1 or newer - SFTP: Adds libssh2_sftp_open_ex_r() and libssh2_sftp_open_r() extended APIs - SFTP: No longer has a packet limit when reading a directory - SFTP: now parses attribute extensions if they exist - SFTP: no longer will busy loop if SFTP fails to initialize
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 939227
from
David Anes (david.anes)
(revision 71)
Update to 1.10.0
buildservice-autocommit
accepted
request 831685
from
Factory Maintainer (factory-maintainer)
(revision 70)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 829988
from
Dominique Leuenberger (dimstar)
(revision 69)
- Drop man and groff BuildRequires: both are no longer used in current versions.
buildservice-autocommit
accepted
request 742246
from
Tomáš Chvátal (scarabeus_iv)
(revision 68)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 742231
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 67)
- Security fix: [bsc#1154862, CVE-2019-17498] * The SSH_MSG_DISCONNECT:packet.c logic has an integer overflow in a bounds check that might lead to disclose sensitive information or cause a denial of service * Add patch libssh2_org-CVE-2019-17498.patch
buildservice-autocommit
accepted
request 711291
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 66)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 711121
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 65)
- Version update to 1.9.0: Enhancements and bugfixes: * adds ECDSA keys and host key support when using OpenSSL * adds ED25519 key and host key support when using OpenSSL 1.1.1 * adds OpenSSH style key file reading * adds AES CTR mode support when using WinCNG * adds PEM passphrase protected file support for Libgcrypt and WinCNG * adds SHA256 hostkey fingerprint * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() * adds explicit zeroing of sensitive data in memory * adds additional bounds checks to network buffer reads * adds the ability to use the server default permissions when creating sftp directories * adds support for building with OpenSSL no engine flag * adds support for building with LibreSSL * increased sftp packet size to 256k * fixed oversized packet handling in sftp * fixed building with OpenSSL 1.1 * fixed a possible crash if sftp stat gets an unexpected response * fixed incorrect parsing of the KEX preference string value * fixed conditional RSA and AES-CTR support * fixed a small memory leak during the key exchange process * fixed a possible memory leak of the ssh banner string * fixed various small memory leaks in the backends * fixed possible out of bounds read when parsing public keys from the server * fixed possible out of bounds read when parsing invalid PEM files * no longer null terminates the scp remote exec command * now handle errors when diffie hellman key pair generation fails * improved building instructions * improved unit tests - Rebased patch libssh2-ocloexec.patch
buildservice-autocommit
accepted
request 692646
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 64)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 692556
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 63)
- Version update to 1.8.2: [bsc#1130103] Bug fixes: * Fixed the misapplied userauth patch that broke 1.8.1 * moved the MAX size declarations from the public header
buildservice-autocommit
accepted
request 686382
from
Tomáš Chvátal (scarabeus_iv)
(revision 62)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 686341
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 61)
- Version update to 1.8.1: Bug Fixes: * [bsc#1128471, CVE-2019-3855] Integer overflow when reading a specially crafted packet * [bsc#1128493, CVE-2019-3863] Integer overflow in userauth_keyboard_interactive with a number of extremely long prompt strings * [bsc#1128472, CVE-2019-3856] Integer overflow if the server sent an extremely large number of keyboard prompts * [bsc#1128490, CVE-2019-3861] Out of bounds read when processing a specially crafted packet * [bsc#1128474, CVE-2019-3857] Integer overflow when receiving a specially crafted exit signal message channel packet * [bsc#1128492, CVE-2019-3862] Out of bounds read when receiving a specially crafted exit status message channel packet * [bsc#1128476, CVE-2019-3858] Zero byte allocation when reading a specially crafted SFTP packet * [bsc#1128481, CVE-2019-3860] Out of bounds reads when processing specially crafted SFTP packets * [bsc#1128480, CVE-2019-3859] Out of bounds reads in _libssh2_packet_require(v)
buildservice-autocommit
accepted
request 566491
from
Tomáš Chvátal (scarabeus_iv)
(revision 60)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 566490
from
Dominique Leuenberger (dimstar)
(revision 59)
- Drop openssh BuildRequires: this is only used for one of the minor self-tests. And in plus, this should kill the small cycle openssh -> libssh2_org -> systemd -> openssh
Displaying revisions 1 - 20 of 78