packages/net/openssh/patches, branch master Mirror of packages feed https://git.openwrt.org/feed/packages/atom?h=master 2025-02-20T08:48:21Z openssh: bump to 9.9p2 2025-02-20T08:48:21Z John Audia 2025-02-18T17:57:33Z urn:sha1:67784bf4d09b507f7a8ad68cd0910bf654a3bec0 Updated and removed upstreamed patch. Highlights relating to security: * Fix CVE-2025-26465 - ssh(1) in OpenSSH versions 6.8p1 to 9.9p1 (inclusive) contained a logic error that allowed an on-path attacker (a.k.a MITM) to impersonate any server when the VerifyHostKeyDNS option is enabled. This option is off by default. * Fix CVE-2025-26466 - sshd(8) in OpenSSH versions 9.5p1 to 9.9p1 (inclusive) is vulnerable to a memory/CPU denial-of-service related to the handling of SSH2_MSG_PING packets. This condition may be mitigated using the existing PerSourcePenalties feature. Both vulnerabilities were discovered and demonstrated to be exploitable by the Qualys Security Advisory team. We thank them for their detailed review of OpenSSH. Full release notes: https://www.openssh.com/txt/release-9.9p2 Signed-off-by: John Audia <therealgraysky@proton.me> openssh: bump to 9.9p1 2024-09-26T12:15:13Z John Audia 2024-09-22T18:07:20Z urn:sha1:b90e9b7eba3372447ff5577b74ee90ad9b6a50ef Release notes: https://www.openssh.com/txt/release-9.9 Added upstream patch to fix build[1] 1. https://github.com/openssh/openssh-portable/commit/76a618d2842c34c16cd21a4efc7230e2f459008d.patch Build system: x86/64 Build-tested: x86/64/AMD Cezanne Run-tested: x86/64/AMD Cezanne Signed-off-by: John Audia <therealgraysky@proton.me> openssh: fix incompatible ptr type error GCC 14.1 2024-07-05T20:41:33Z Sean Khan 2024-07-05T11:42:45Z urn:sha1:c7f099a19cc892828a1f2de6036418cfee017cfb The `ssh_systemd_notify` function is causing compilation errors when built against GCC 14.1. This is due to an incompatible pointer type being passed to the connect function. The connect function expects a pointer to `struct sockaddr`, but was receiving a pointer to `struct sockaddr_un`. Signed-off-by: Sean Khan <datapronix@protonmail.com> openssh: bump to 9.7p1 2024-03-19T22:07:15Z John Audia 2024-03-12T12:13:02Z urn:sha1:6be0617c00bdf5e9309ad3738d09fe498cb9fb0a Release notes: https://www.openssh.com/txt/release-9.7 Removed upstreamed patch: 010-better_fzero-call-detection.patch Build system: x86/64 Build-tested: x86/64/AMD Cezanne Run-tested: x86/64/AMD Cezanne Signed-off-by: John Audia <therealgraysky@proton.me> openssh: fix build failure on powerpc_8548 2024-01-06T21:48:02Z Sibren Vasse 2023-12-20T16:01:50Z urn:sha1:a79c49578ca136556bd10d8990aa52ef4eb0664b https://github.com/openssh/openssh-portable/commit/1036d77b34a5fa15e56f516b81b9928006848cbd Signed-off-by: Sibren Vasse <github@sibrenvasse.nl> openssh: add server config subdirectory 2023-08-07T23:39:56Z Philip Prindeville 2023-08-07T21:21:26Z urn:sha1:ead95a26b68f4145937034d84abdf9e0f7fe1eb7 Most distros allow dropping site configuration files into /etc/sshd_config.d/ so that you don't have to tweak the main server configuration file. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com> openssh: update to 9.0p1 2022-04-13T22:46:37Z Sibren Vasse 2022-04-09T10:01:44Z urn:sha1:08b45115d7aa6291de0bb0b885750fa63a3a6e2f Remove upstreamed patches. Signed-off-by: Sibren Vasse <github@sibrenvasse.nl> openssh: update to 8.9p1 2022-03-17T02:53:38Z Michal Vasilek 2022-03-03T18:38:51Z urn:sha1:ee7aae202a80cbb50da710bdcff62862e93c0c1c Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz> openssh: update to 8.1p1 2019-11-09T14:17:35Z Sibren Vasse 2019-11-09T14:17:35Z urn:sha1:0c2554222fbb0470ebdac7d7665cafcd1770e755 Signed-off-by: Sibren Vasse <github@sibrenvasse.nl> openssh: Fix compilation with -Wimplicit-function 2019-07-21T10:31:31Z Rosen Penev 2019-07-04T03:50:00Z urn:sha1:5a3e520f45b96f3458266ba20cf4d3b09bb4b974 Upstream backport. Signed-off-by: Rosen Penev <rosenp@gmail.com>