Package: libssh / 0.7.3-2+deb9u2

Metadata

Package Version Patches format
libssh 0.7.3-2+deb9u2 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 CVE 2018 10933 Introduced new auth states.patch | (download)

include/libssh/auth.h | 4 4 + 0 - 0 !
src/auth.c | 32 21 + 11 - 0 !
2 files changed, 25 insertions(+), 11 deletions(-)

 [1/8] cve-2018-10933: introduced new auth states
0002 CVE 2018 10933 Introduce SSH_AUTH_STATE_PASSWORD_AUT.patch | (download)

include/libssh/auth.h | 2 2 + 0 - 0 !
src/auth.c | 4 3 + 1 - 0 !
2 files changed, 5 insertions(+), 1 deletion(-)

 [2/8] cve-2018-10933: introduce ssh_auth_state_password_auth_sent
0003 CVE 2018 10933 Introduce SSH_AUTH_STATE_AUTH_NONE_SE.patch | (download)

include/libssh/auth.h | 2 2 + 0 - 0 !
src/auth.c | 4 3 + 1 - 0 !
2 files changed, 5 insertions(+), 1 deletion(-)

 [3/8] cve-2018-10933: introduce ssh_auth_state_auth_none_sent
0004 CVE 2018 10933 Set correct state after sending MIC.patch | (download)

src/gssapi.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [4/8] cve-2018-10933: set correct state after sending mic
0005 CVE 2018 10933 Check channel state when OPEN_CONFIRM.patch | (download)

src/channels.c | 9 9 + 0 - 0 !
1 file changed, 9 insertions(+)

 [5/8] cve-2018-10933: check channel state when open_confirmation
 arrives
0006 CVE 2018 10933 Check channel state when OPEN_FAILURE.patch | (download)

src/channels.c | 11 11 + 0 - 0 !
1 file changed, 11 insertions(+)

 [6/8] cve-2018-10933: check channel state when open_failure arrives
0007 CVE 2018 10933 Introduced packet filtering.patch | (download)

include/libssh/packet.h | 6 6 + 0 - 0 !
src/packet.c | 787 785 + 2 - 0 !
2 files changed, 791 insertions(+), 2 deletions(-)

 [7/8] cve-2018-10933: introduced packet filtering
0008 CVE 2018 10933 Add tests for packet filtering.patch | (download)

tests/unittests/CMakeLists.txt | 1 1 + 0 - 0 !
tests/unittests/torture_packet_filter.c | 500 500 + 0 - 0 !
2 files changed, 501 insertions(+)

 [8/8] cve-2018-10933: add tests for packet filtering
0009 server Set correct state after sending INFO_REQUEST .patch | (download)

src/server.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 server: set correct state after sending info_request (kbd
 Interactive)
0010 server Fix compile error.patch | (download)

src/server.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 server: fix compile error
1001_error msg typo fix.patch | (download)

src/pki_crypto.c | 4 2 + 2 - 0 !
src/pki_gcrypt.c | 2 1 + 1 - 0 !
2 files changed, 3 insertions(+), 3 deletions(-)

 fix spelling error in pki_* code
1003 custom lib names.patch | (download)

src/CMakeLists.txt | 7 6 + 1 - 0 !
src/threads/CMakeLists.txt | 2 1 + 1 - 0 !
2 files changed, 7 insertions(+), 2 deletions(-)

 allow to overwrite libssh's output_name.
2003 disable expand_tilde_unix test.patch | (download)

tests/unittests/torture_misc.c | 10 5 + 5 - 0 !
1 file changed, 5 insertions(+), 5 deletions(-)

 disable torture_path_expand_tilde_unix, its not working well on buildd
 On buildd, the HOME is set to a non-existing directory, this makes
 torture_path_expand_tilde_unix fail