| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-03-13 | CVE-2021-28041: Fix double free in ssh-agent(1) | Colin Watson | |
| Closes: #984940 | |||
| 2020-12-02 | Fix `EOF: command not found` error in ssh-copy-id | Colin Watson | |
| Closes: #975540 | |||
| 2020-10-26 | Revert incorrect upstream x32 seccomp patch | Colin Watson | |
| 2020-10-20 | New upstream release (8.4p1) | Colin Watson | |
| 2020-06-07 | Fix the handling of Port directives after Include | Colin Watson | |
| Closes: #962035 LP: #1876320 | |||
| 2020-06-07 | New upstream release (8.3p1) | Colin Watson | |
| Also update GSSAPI key exchange patch from https://github.com/openssh-gsskex/openssh-gsskex. | |||
| 2020-02-21 | Include /etc/ssh/*_config.d/*.conf | Colin Watson | |
| Include /etc/ssh/ssh_config.d/*.conf from /etc/ssh/ssh_config and /etc/ssh/sshd_config.d/*.conf from /etc/ssh/sshd_config. Closes: #845315 | |||
| 2020-02-21 | New upstream release (8.2p1) | Colin Watson | |
| 2020-02-19 | ssh(1): Explain that -Y is equivalent to -X | Colin Watson | |
| Closes: #951640 | |||
| 2020-01-11 | Deny (non-fatal) ipc in preauth privsep child | Colin Watson | |
| Closes: #946242 | |||
| 2020-01-11 | seccomp: Allow clock_nanosleep() and variants | Colin Watson | |
| 2020-01-09 | Stop using 2020 as a future date in regress tests | Colin Watson | |
| 2019-10-22 | Drop seccomp-s390-flock-ipc.patch for now | Colin Watson | |
| Drop "Allow flock and ipc syscall for s390 architecture" patch for now; upstream has security concerns with it and it doesn't currently seem to be needed. | |||
| 2019-10-09 | Fix Launchpad bug URL | Colin Watson | |
| 2019-10-09 | New upstream release (8.1p1) | Colin Watson | |
| 2019-10-05 | Deny (non-fatal) shmget/shmat/shmdt in preauth privsep child | Colin Watson | |
| This copes with changes in OpenSSL 1.1.1d that broke OpenSSH on Linux kernels before 3.19. Closes: #941663 | |||
| 2019-06-21 | Update contact information for Natalie Amery | Colin Watson | |
| 2019-06-14 | Fix interop tests for recent regress changes | Colin Watson | |
| 2019-06-09 | Fix utimensat tests when not using compat code | Colin Watson | |
| 2019-06-09 | New upstream release (8.0p1) | Colin Watson | |
| 2019-04-08 | Temporarily revert IPQoS defaults to pre-7.8 values | Colin Watson | |
| This is just until issues with "iptables -m tos" and VMware have been fixed. Closes: #923879, #926229 LP: #1822370 | |||
| 2019-03-01 | Handle shell-style brace expansions in scp checks | Colin Watson | |
| 2019-02-28 | Request RSA-SHA2 signatures for corresponding cert algorithms | Colin Watson | |
| Closes: #923419 | |||
| 2019-02-28 | Fix key type checks with RSA-SHA2 signature types | Colin Watson | |
| 2019-02-08 | scp: Check remote->local directory copy filenames | Colin Watson | |
| CVE-2019-6111 | |||
| 2019-02-08 | Sanitize scp filenames via snmprintf | Colin Watson | |
| CVE-2019-6109 Closes: #793412 | |||
| 2019-01-12 | scp: disallow empty incoming filename or "." | Colin Watson | |
| Closes: #919101 | |||
| 2018-10-20 | New upstream release (7.9p1) | Colin Watson | |
| 2018-08-30 | Work around conch interoperability failure | Colin Watson | |
| Twisted Conch fails to read private keys in the new format (https://twistedmatrix.com/trac/ticket/9515). Work around this until it can be fixed in Twisted. | |||
| 2018-08-30 | New upstream release (7.8p1) | Colin Watson | |
| Closes: #907534 | |||
| 2018-08-17 | Fix user enumeration vulnerability | Colin Watson | |
| Apply upstream patch to delay bailout for invalid authenticating user until after the packet containing the request has been fully parsed. Closes: #906236 | |||
| 2018-06-28 | [ Christian Ehrhardt ] | Christian Ehrhardt | |
| Fix unintentional restriction of authorized keys environment options to be alphanumeric (LP: #1771011) | |||
| 2018-04-03 | Fix parsing of DebianBanner option | Colin Watson | |
| Closes: #894730 | |||
| 2018-04-03 | New upstream release (7.7p1) | Colin Watson | |
| 2018-01-16 | Fix putty-transfer regression test. | Colin Watson | |
| 2017-10-07 | Apply upstream patch to fix PermitOpen argument handling. | Colin Watson | |
| 2017-10-05 | New upstream release (7.6p1) | Colin Watson | |
| 2017-08-28 | Apply patches from https://bugzilla.mindrot.org/show_bug.cgi?id=2752 to ↵ | Colin Watson | |
| allow some extra syscalls for crypto cards on s390x (LP: #1686618). | |||
| 2017-08-22 | Quote IP address in suggested "ssh-keygen -f" calls (closes: #872643). | Colin Watson | |
| 2017-08-22 | Drop Upstart-specific patches | Colin Watson | |
| 2017-06-06 | Fix incoming compression statistics (thanks, Russell Coker; closes: #797964). | Colin Watson | |
| 2017-04-02 | Fix syntax error on Linux/X32 | Colin Watson | |
| 2017-04-02 | Add missing header on Linux/s390 | Colin Watson | |
| 2017-04-02 | New upstream release (7.5p1) | Colin Watson | |
| 2017-03-30 | Unbreak Unix domain socket forwarding for root (closes: #858252). | Colin Watson | |
| 2017-03-16 | Fix null pointer dereference in ssh-keygen; this fixes an autopkgtest ↵ | Colin Watson | |
| regression introduced in 1:7.4p1-8. | |||
| 2017-03-14 | Fix ssh-keyscan to correctly hash hosts with a port number (closes: #857736, ↵ | Colin Watson | |
| LP: #1670745). | |||
| 2017-03-09 | Fix ssh-keygen -H accidentally corrupting known_hosts that contained ↵ | Colin Watson | |
| already-hashed entries (closes: #851734, LP: #1668093). | |||
| 2017-03-05 | Restore reading authorized_keys2 by default | Colin Watson | |
| Upstream seems to intend to gradually phase this out, so don't assume that this will remain the default forever. However, we were late in adopting the upstream sshd_config changes, so it makes sense to extend the grace period (closes: #852320). | |||
| 2017-01-16 | Fix rekeying failure with GSSAPI key exchange (thanks, Harald Barth; closes: ↵ | Colin Watson | |
| #819361). | |||
 |
index : openssh.git | |
| summaryrefslogtreecommitdiff |