pkgsrc/security/dropbear/distinfo at d096207c554b2535f6e47b5366ea04748979dd77 - kpriv/pkgsrc - Disroot Forgejo: Brace yourself, merge conflicts ahead.

kpriv/pkgsrc

martti 34f8f2645b Updated dropbear to 0.43

- SECURITY: Don't try to free() uninitialised variables in DSS verification
  code. Thanks to Arne Bernin for pointing out this bug. This is possibly
  exploitable, all users with DSS and pubkey-auth compiled in are advised to
  upgrade.

- Clean up agent forwarding socket files correctly, patch from Gerrit Pape.

- Don't go into an infinite loop when portforwarding to servers which don't
  send any initial data/banner. Patch from Nikola Vladov

- Fix for network vs. host byte order in logging remote TCP ports, also
  from Gerrit Pape.

- Initialise many pointers to NULL, for general safety. Also checked cleanup
  code for mp_ints (related to security issues above).

2004-08-31 10:27:38 +00:00

5 lines

234 B

Text

Raw Blame History

 $NetBSD: distinfo,v 1.4 2004/08/31 10:27:38 martti Exp $
 SHA1 (dropbear-0.43.tar.bz2) = 0bce83ad1a90b9b91e34d0c777f0d914516fd99d
 Size (dropbear-0.43.tar.bz2) = 1140743 bytes
 SHA1 (patch-aa) = 56bf56a3f1485a7395d6ff681b507950a5878345