Makefile.in | 202 202 + 0 - 0 !
1 file changed, 202 insertions(+)

---

erts/configure.ac | 4 2 + 2 - 0 !
erts/emulator/drivers/common/inet_drv.c | 5 5 + 0 - 0 !
erts/etc/common/erlexec.c | 6 3 + 3 - 0 !
erts/etc/common/escript.c | 2 1 + 1 - 0 !
erts/etc/unix/dyn_erl.c | 16 8 + 8 - 0 !
lib/os_mon/c_src/memsup.c | 5 5 + 0 - 0 !
lib/ssl/src/Makefile | 3 2 + 1 - 0 !
7 files changed, 26 insertions(+), 15 deletions(-)

---

erts/etc/common/erlexec.c | 6 4 + 2 - 0 !
1 file changed, 4 insertions(+), 2 deletions(-)

---

lib/tools/emacs/erlang.el | 14 7 + 7 - 0 !
1 file changed, 7 insertions(+), 7 deletions(-)

---

lib/erl_docgen/priv/xsl/db_man.xsl | 4 2 + 2 - 0 !
lib/megaco/doc/src/Makefile | 5 1 + 4 - 0 !
lib/stdlib/doc/src/re.xml | 4 2 + 2 - 0 !
lib/tools/Makefile | 2 1 + 1 - 0 !
4 files changed, 6 insertions(+), 9 deletions(-)

 fixes a bug with .re macro in the erlang manpages
 and a few bugs with docs installation.
Last-modified: Thu, 09 Dec 2010 10:45:56 +0300

erts/configure.ac | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 gcj 4.4 passes the test for jdk 1.5 but doesn't implement
 String#String(int[], int, int) constructor, which breaks jinterface
 build. This patch adds a check for the definition of this constructor.
 It helps to build Erlang on architectures without openjdk-6 available.

lib/common_test/priv/Makefile.in | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

erts/lib_src/pthread/ethread.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 this patch fixes ftbfs for x86_x32 architecture (x86_64
 with 32-bit integers, longs and pointers).
Last-Modified: Sun, 27 Dec 2015 12:39:07 +0300

lib/ssh/src/ssh.hrl | 5 4 + 1 - 0 !
lib/ssh/src/ssh_connection_handler.erl | 10 10 + 0 - 0 !
lib/ssh/src/ssh_fsm_kexinit.erl | 2 1 + 1 - 0 !
lib/ssh/src/ssh_transport.erl | 104 83 + 21 - 0 !
lib/ssh/src/ssh_transport.hrl | 4 3 + 1 - 0 !
lib/ssh/test/ssh_protocol_SUITE.erl | 100 90 + 10 - 0 !
lib/ssh/test/ssh_test_lib.erl | 52 51 + 1 - 0 !
lib/ssh/test/ssh_to_openssh_SUITE.erl | 88 71 + 17 - 0 !
lib/ssh/test/ssh_trpt_test_lib.erl | 34 21 + 13 - 0 !
9 files changed, 334 insertions(+), 65 deletions(-)

 ssh: kex strict
 The patch strictenes KEX to avoid disabling or downgrading
 security features for the connection.
 - negotiate "strict KEX" OpenSSH feature
 - when negotiated between peers apply strict KEX
 - related tests
 - print_seqnums fix in ssh_trtp test code

lib/ssh/src/ssh_sftpd.erl | 47 32 + 15 - 0 !
1 file changed, 32 insertions(+), 15 deletions(-)

 ssh: sftp reject packets exceeding limit

lib/ssh/src/ssh.hrl | 8 7 + 1 - 0 !
lib/ssh/src/ssh_acceptor.erl | 68 46 + 22 - 0 !
lib/ssh/src/ssh_connection_handler.erl | 12 8 + 4 - 0 !
3 files changed, 61 insertions(+), 27 deletions(-)

 ssh: reduce log processing for plain connections
 - avoid unnecessary data processing

lib/ssh/src/ssh_message.erl | 20 18 + 2 - 0 !
1 file changed, 18 insertions(+), 2 deletions(-)

 ssh: ignore too long names
 The patch makes Erlang SSH application ignore long
 algorithm names in order to fix denial of service because
 of high memory consumption.

lib/ssh/src/ssh_connection_handler.erl | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 ssh: use chars_limit for bad packets error messages
 The patch limits the length of error messages sent in reply
 to very long invalid packets.

lib/ssh/test/ssh_protocol_SUITE.erl | 90 87 + 3 - 0 !
1 file changed, 87 insertions(+), 3 deletions(-)

 ssh: custom_kexinit test added
 The test uses big KEX init packet which causes large memory
 consumption for Erlang prior to 25.3.2.19

lib/ssh/src/ssh_connection.erl | 28 22 + 6 - 0 !
lib/ssh/test/ssh_protocol_SUITE.erl | 86 45 + 41 - 0 !
2 files changed, 67 insertions(+), 47 deletions(-)

 ssh: early rce fix
 The patch fixes remote code execution (RCE) by an unauthenticated user.
 - disconnect when connection protocol message arrives
 - when user is not authenticated for connection
 - see RFC4252 sec.6