From 98b462e25034abc863ae59a9f6cd0e56c972295b0c16c15e9d1cc6a6fb89c219 Mon Sep 17 00:00:00 2001
From: Stephan Kulow <coolo@suse.com>
Date: Tue, 20 Nov 2012 19:15:04 +0000
Subject: [PATCH] Accepting request 142129 from network:synchronization:files

Security update to 0.5.3

OBS-URL: https://build.opensuse.org/request/show/142129
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libssh?expand=0&rev=24
---
 libssh-0.5.2.tar.bz2 |  3 ---
 libssh-0.5.3.tar.bz2 |  3 +++
 libssh.changes       | 18 ++++++++++++++++++
 libssh.spec          |  4 +---
 4 files changed, 22 insertions(+), 6 deletions(-)
 delete mode 100644 libssh-0.5.2.tar.bz2
 create mode 100644 libssh-0.5.3.tar.bz2

diff --git a/libssh-0.5.2.tar.bz2 b/libssh-0.5.2.tar.bz2
deleted file mode 100644
index 209092d..0000000
--- a/libssh-0.5.2.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:ffed38b947d9affd995d1d43fb9b7eaa6a13d929526cba0c24e23e278af9d43c
-size 236827
diff --git a/libssh-0.5.3.tar.bz2 b/libssh-0.5.3.tar.bz2
new file mode 100644
index 0000000..6efe0d3
--- /dev/null
+++ b/libssh-0.5.3.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1015512f3a5d68ef2ef80f9a1aed48f18993f8f87ccd762ee0d2f62225940cde
+size 270834
diff --git a/libssh.changes b/libssh.changes
index e4f9c7f..c49bb4b 100644
--- a/libssh.changes
+++ b/libssh.changes
@@ -1,3 +1,21 @@
+-------------------------------------------------------------------
+Tue Nov 20 13:40:42 UTC 2012 - asn@cryptomilk.org
+
+- Update to version 0.5.3
+  * CVE-2012-4559 Fixed multiple double free() flaws.
+  * CVE-2012-4560 Fixed multiple buffer overflow flaws.
+  * CVE-2012-4561 Fixed multiple invalid free() flaws.
+  * rlo #84 - Fix bug in sftp_mkdir not returning on error.
+  * rlo #85 - Fixed a possible channel infinite loop if the connection dropped.
+  * rlo #88 - Added missing channel request_state and set it to accepted.
+  * rlo #89 - Reset error state to no error on successful SSHv1 authentiction.
+  * Fixed a possible use after free in ssh_free().
+  * Fixed multiple possible NULL pointer dereferences.
+  * Fixed multiple memory leaks in error paths.
+  * Fixed timeout handling.
+  * Fixed regression in pre-connected socket setting.
+  * Handle all unknown global messages.
+
 -------------------------------------------------------------------
 Tue Feb  7 13:34:00 UTC 2012 - jengelh@medozas.de
 
diff --git a/libssh.spec b/libssh.spec
index e9449ef..1f996e0 100644
--- a/libssh.spec
+++ b/libssh.spec
@@ -24,7 +24,7 @@ BuildRequires:  doxygen
 BuildRequires:  gcc-c++
 BuildRequires:  openssl-devel
 BuildRequires:  pkgconfig
-Version:        0.5.2
+Version:        0.5.3
 Release:        0
 Summary:        SSH library
 License:        LGPL-2.1+
@@ -80,9 +80,7 @@ Documentation for libssh development.
 
 %prep
 %setup -q
-%if "%{?sles_version}" == "11"
 %patch -P 1 -p1
-%endif
 
 %build
 if test ! -e "build"; then