Accepting request 433779 from home:pcerny:factory

- remaining patches that were still missing since the update to 7.2p2 (FATE#319675): [openssh-7.2p2-disable_openssl_abi_check.patch] - fix forwarding with IPv6 addresses in DISPLAY (bnc#847710) [openssh-7.2p2-IPv6_X_forwarding.patch] - ignore PAM environment when using login (bsc#975865, CVE-2015-8325) [openssh-7.2p2-ignore_PAM_with_UseLogin.patch] - limit accepted password length (prevents possible DoS) (bsc#992533, CVE-2016-6515) [openssh-7.2p2-limit_password_length.patch] - Prevent user enumeration through the timing of password processing (bsc#989363, CVE-2016-6210) [openssh-7.2p2-prevent_timing_user_enumeration.patch] - Add auditing for PRNG re-seeding [openssh-7.2p2-audit_seed_prng.patch] OBS-URL: https://build.opensuse.org/request/show/433779 OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=113
2016-10-07 15:57:29 +00:00
parent fe873a1c10
commit 6c861e0b33
36 changed files with 605 additions and 46 deletions
--- a/openssh.changes
+++ b/openssh.changes
@@ -1,6 +1,8 @@
 -------------------------------------------------------------------
 Thu Sep 29 23:27:49 UTC 2016 - pcerny@suse.com

+- remaining patches that were still missing
+  since the update to 7.2p2 (FATE#319675):
 - allow X forwarding over IPv4 when IPv6 sockets is not available
  [openssh-7.2p2-X_forward_with_disabled_ipv6.patch]
 - do not write PID file when not daemonizing
@@ -13,7 +15,7 @@ Thu Sep 29 23:27:49 UTC 2016 - pcerny@suse.com
 - allow forcing permissions over sftp
  [openssh-7.2p2-sftp_force_permissions.patch]
 - do not perform run-time checks for OpenSSL API/ABI change
-  [openssh-7.2p2-disable-openssl-abi-check.patch]
+  [openssh-7.2p2-disable_openssl_abi_check.patch]
 - suggest commands for cleaning known hosts file
  [openssh-7.2p2-host_ident.patch]
 - sftp home chroot patch
@@ -22,6 +24,19 @@ Thu Sep 29 23:27:49 UTC 2016 - pcerny@suse.com
  [openssh-7.2p2-audit.patch]
 - enable seccomp sandbox on additional architectures
  [openssh-7.2p2-additional_seccomp_archs.patch]
+- fix forwarding with IPv6 addresses in DISPLAY (bnc#847710)
+  [openssh-7.2p2-IPv6_X_forwarding.patch]
+- ignore PAM environment when using login
+  (bsc#975865, CVE-2015-8325)
+  [openssh-7.2p2-ignore_PAM_with_UseLogin.patch]
+- limit accepted password length (prevents possible DoS)
+  (bsc#992533, CVE-2016-6515)
+  [openssh-7.2p2-limit_password_length.patch]
+- Prevent user enumeration through the timing of password
+  processing (bsc#989363, CVE-2016-6210)
+  [openssh-7.2p2-prevent_timing_user_enumeration.patch]
+- Add auditing for PRNG re-seeding
+  [openssh-7.2p2-audit_seed_prng.patch]

 -------------------------------------------------------------------
 Fri Sep 16 12:45:11 UTC 2016 - pcerny@suse.com