6c861e0b33
- remaining patches that were still missing since the update to 7.2p2 (FATE#319675): [openssh-7.2p2-disable_openssl_abi_check.patch] - fix forwarding with IPv6 addresses in DISPLAY (bnc#847710) [openssh-7.2p2-IPv6_X_forwarding.patch] - ignore PAM environment when using login (bsc#975865, CVE-2015-8325) [openssh-7.2p2-ignore_PAM_with_UseLogin.patch] - limit accepted password length (prevents possible DoS) (bsc#992533, CVE-2016-6515) [openssh-7.2p2-limit_password_length.patch] - Prevent user enumeration through the timing of password processing (bsc#989363, CVE-2016-6210) [openssh-7.2p2-prevent_timing_user_enumeration.patch] - Add auditing for PRNG re-seeding [openssh-7.2p2-audit_seed_prng.patch] OBS-URL: https://build.opensuse.org/request/show/433779 OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=113
27 lines
798 B
Diff
27 lines
798 B
Diff
# HG changeset patch
|
|
# Parent 79c00e0f450c33b3f545ef104112b55186290e2c
|
|
# set uid for functions that use it to seek in lastlog and wtmp files
|
|
# bnc#18024 (was suse #3024)
|
|
|
|
diff --git a/openssh-7.2p2/sshlogin.c b/openssh-7.2p2/sshlogin.c
|
|
--- a/openssh-7.2p2/sshlogin.c
|
|
+++ b/openssh-7.2p2/sshlogin.c
|
|
@@ -129,16 +129,17 @@ record_login(pid_t pid, const char *tty,
|
|
{
|
|
struct logininfo *li;
|
|
|
|
/* save previous login details before writing new */
|
|
store_lastlog_message(user, uid);
|
|
|
|
li = login_alloc_entry(pid, user, host, tty);
|
|
login_set_addr(li, addr, addrlen);
|
|
+ li->uid = uid;
|
|
login_login(li);
|
|
login_free_entry(li);
|
|
}
|
|
|
|
#ifdef LOGIN_NEEDS_UTMPX
|
|
void
|
|
record_utmp_only(pid_t pid, const char *ttyname, const char *user,
|
|
const char *host, struct sockaddr *addr, socklen_t addrlen)
|