NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4104e099fd
kumquat-buildroot/package/openssh/openssh.hash
Fabrice Fontaine 9597d5ec8e package/openssh: security bump to version 8.9p1 
Security Near Miss
==================

 * sshd(8): fix an integer overflow in the user authentication path
   that, in conjunction with other logic errors, could have yielded
   unauthenticated access under difficult to exploit conditions.

   This situation is not exploitable because of independent checks in
   the privilege separation monitor. Privilege separation has been
   enabled by default in since openssh-3.2.2 (released in 2002) and
   has been mandatory since openssh-7.5 (released in 2017). Moreover,
   portable OpenSSH has used toolchain features available in most
   modern compilers to abort on signed integer overflow since
   openssh-6.5 (released in 2014).

Update license (md5crypt removed, bcrypt relicensed to BSD-3-Clause:
a5ab488234
158bf854e2
c0459588b8)

https://www.openssh.com/txt/release-8.9

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-02-28 19:55:20 +01:00

5 lines
262 B
Plaintext
Raw Blame History

# From https://www.openssh.com/txt/release-8.9 (base64 encoded)
sha256 fd497654b7ab1686dac672fb83dfb4ba4096e8b5ffcdaccd262380ae58bec5e7 openssh-8.9p1.tar.gz
# Locally calculated
sha256 d6807e99f3d159145c659060f57c3fa74e109faa39326dbfc38674cb550fd104 LICENCE
Reference in New Issue View Git Blame Copy Permalink