dropbear

changeset 661:c015af8a71cf

2012.55
author Matt Johnston <matt@ucc.asn.au>
date Wed, 22 Feb 2012 22:12:15 +0800
parents a842469ce8ad
children d354464b2aa6
files CHANGES debian/changelog sysoptions.h
diffstat 3 files changed, 24 insertions(+), 1 deletions(-) [+]
line diff
     1.1 --- a/CHANGES	Wed Feb 22 22:05:24 2012 +0800
     1.2 +++ b/CHANGES	Wed Feb 22 22:12:15 2012 +0800
     1.3 @@ -1,3 +1,20 @@
     1.4 +2012.55 - Wednesday 22 February 2012
     1.5 +
     1.6 +- Security: Fix use-after-free bug that could be triggered when multiple command sessions were
     1.7 +  made when a command="" authorized_keys restriction was in effect. Possible arbitrary
     1.8 +  code execution to an authenticated user, and probable bypass of the command="" restriction.
     1.9 +  CVE-2012-0920. Thanks to Danny Fullerton of Mantor Organization for reporting the bug
    1.10 +
    1.11 +- Compile fix, only apply IPV6 socket options if they are available in headers
    1.12 +  Thanks to Gustavo Zacarias for the patch
    1.13 +
    1.14 +- Clear key memory on exit
    1.15 +
    1.16 +- Fix minor memory leak in unusual PAM authentication configurations.
    1.17 +  Thanks to Stathis Voukelatos
    1.18 +
    1.19 +- Other small code cleanups
    1.20 +
    1.21  2011.54 - Tuesday 8 November 2011
    1.22  
    1.23  - Building statically works again, broke in 0.53 and 0.53.1
     2.1 --- a/debian/changelog	Wed Feb 22 22:05:24 2012 +0800
     2.2 +++ b/debian/changelog	Wed Feb 22 22:12:15 2012 +0800
     2.3 @@ -1,3 +1,9 @@
     2.4 +dropbear (2012.55-0.1) unstable; urgency=low
     2.5 +
     2.6 +  * New upstream release.
     2.7 +
     2.8 + -- Matt Johnston <matt@ucc.asn.au>  Wed, 22 Feb 2012 22:54:00 +0800
     2.9 +
    2.10  dropbear (2011.54-0.1) unstable; urgency=low
    2.11  
    2.12    * New upstream release.
     3.1 --- a/sysoptions.h	Wed Feb 22 22:05:24 2012 +0800
     3.2 +++ b/sysoptions.h	Wed Feb 22 22:12:15 2012 +0800
     3.3 @@ -4,7 +4,7 @@
     3.4   *******************************************************************/
     3.5  
     3.6  #ifndef DROPBEAR_VERSION
     3.7 -#define DROPBEAR_VERSION "2011.54"
     3.8 +#define DROPBEAR_VERSION "2012.55"
     3.9  #endif
    3.10  
    3.11  #define LOCAL_IDENT "SSH-2.0-dropbear_" DROPBEAR_VERSION