d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2b519b1707
freebsd-dev/crypto/openssh/openbsd-compat
History
Ed Maste 4d3fc8b057 ssh: Update to OpenSSH 9.3p1 
This release fixes a number of security bugs and has minor new
features and bug fixes.  Security fixes, from the release notes
(https://www.openssh.com/txt/release-9.3):

This release contains fixes for a security problem and a memory
safety problem. The memory safety problem is not believed to be
exploitable, but we report most network-reachable memory faults as
security bugs.

 * ssh-add(1): when adding smartcard keys to ssh-agent(1) with the
   per-hop destination constraints (ssh-add -h ...) added in OpenSSH
   8.9, a logic error prevented the constraints from being
   communicated to the agent. This resulted in the keys being added
   without constraints. The common cases of non-smartcard keys and
   keys without destination constraints are unaffected. This problem
   was reported by Luci Stanescu.

 * ssh(1): Portable OpenSSH provides an implementation of the
   getrrsetbyname(3) function if the standard library does not
   provide it, for use by the VerifyHostKeyDNS feature. A
   specifically crafted DNS response could cause this function to
   perform an out-of-bounds read of adjacent stack data, but this
   condition does not appear to be exploitable beyond denial-of-
   service to the ssh(1) client.

   The getrrsetbyname(3) replacement is only included if the system's
   standard library lacks this function and portable OpenSSH was not
   compiled with the ldns library (--with-ldns). getrrsetbyname(3) is
   only invoked if using VerifyHostKeyDNS to fetch SSHFP records. This
   problem was found by the Coverity static analyzer.

Sponsored by:	The FreeBSD Foundation
2023-03-16 10:29:55 -04:00
..
regress ssh: update to OpenSSH 9.2p1 2023-02-06 16:54:56 -05:00
arc4random_uniform.c ssh: update to OpenSSH 9.1p1 2022-10-19 10:27:11 -04:00
arc4random.c ssh: update to OpenSSH 9.2p1 2023-02-06 16:54:56 -05:00
arc4random.h ssh: update to OpenSSH 9.2p1 2023-02-06 16:54:56 -05:00
base64.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
base64.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
basename.c
bcrypt_pbkdf.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bindresvport.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
blf.h ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
blowfish.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bsd-asprintf.c ssh: update to OpenSSH 9.1p1 2022-10-19 10:27:11 -04:00
bsd-closefrom.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bsd-cygwin_util.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bsd-cygwin_util.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
bsd-err.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
bsd-flock.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
bsd-getentropy.c ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
bsd-getline.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bsd-getpagesize.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
bsd-getpeereid.c
bsd-malloc.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
bsd-misc.c ssh: update to OpenSSH 9.1p1 2022-10-19 10:27:11 -04:00
bsd-misc.h ssh: update to OpenSSH v9.0p1 2022-04-15 10:41:08 -04:00
bsd-nextstep.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
bsd-nextstep.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
bsd-openpty.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bsd-poll.c ssh: update to OpenSSH 9.2p1 2023-02-06 16:54:56 -05:00
bsd-poll.h ssh: update to OpenSSH 9.2p1 2023-02-06 16:54:56 -05:00
bsd-pselect.c ssh: update to OpenSSH v8.8p1 2021-12-19 11:02:02 -05:00
bsd-setres_id.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
bsd-setres_id.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
bsd-signal.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
bsd-signal.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
bsd-snprintf.c ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
bsd-statvfs.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
bsd-statvfs.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
bsd-timegm.c ssh: update to OpenSSH 9.2p1 2023-02-06 16:54:56 -05:00
bsd-waitpid.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
bsd-waitpid.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
chacha_private.h ssh: update to OpenSSH v9.0p1 2022-04-15 10:41:08 -04:00
charclass.h
daemon.c
dirname.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
explicit_bzero.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
fake-rfc2553.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
fake-rfc2553.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
fmt_scaled.c ssh: update with post-release V_8_9 branch commits 2022-04-13 16:53:20 -04:00
fnmatch.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
fnmatch.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
freezero.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
getcwd.c ssh: update to OpenSSH 9.1p1 2022-10-19 10:27:11 -04:00
getgrouplist.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
getopt_long.c ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
getopt.h ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
getrrsetbyname-ldns.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
getrrsetbyname.c ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
getrrsetbyname.h
glob.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
glob.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
inet_aton.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
inet_ntoa.c
inet_ntop.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
kludge-fd_set.c Upgrade to OpenSSH 6.7p1, retaining libwrap support (which has been removed 2016-01-19 16:18:26 +00:00
libressl-api-compat.c ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
Makefile.in ssh: update to OpenSSH 9.1p1 2022-10-19 10:27:11 -04:00
md5.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
md5.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
memmem.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
mktemp.c ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
openbsd-compat.h ssh: Update to OpenSSH 9.3p1 2023-03-16 10:29:55 -04:00
openssl-compat.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
openssl-compat.h ssh: update to OpenSSH 9.1p1 2022-10-19 10:27:11 -04:00
port-aix.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-aix.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-irix.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-irix.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
port-linux.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-linux.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
port-net.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-net.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
port-prngd.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-solaris.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00
port-solaris.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
port-uw.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
port-uw.h
pwcache.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
readpassphrase.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
readpassphrase.h
reallocarray.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
recallocarray.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
rresvport.c
setenv.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
setproctitle.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
sha1.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
sha1.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
sha2.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
sha2.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
sigact.c
sigact.h
strcasestr.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
strlcat.c
strlcpy.c
strmode.c
strndup.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
strnlen.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
strptime.c
strsep.c
strtoll.c
strtonum.c openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
strtoul.c
strtoull.c
sys-queue.h openssh: update to OpenSSH v8.7p1 2021-09-07 21:05:51 -04:00
sys-tree.h
timingsafe_bcmp.c
vis.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
vis.h Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
xcrypt.c ssh: update to OpenSSH v8.9p1 2022-04-13 16:00:56 -04:00