From 78a89e637c337e240678de3d1c0f1486b3affb93 Mon Sep 17 00:00:00 2001
From: Colin Watson <cjwatson@debian.org>
Date: Tue, 13 Jan 2009 20:18:14 +0000
Subject: Check that /var/run/sshd.pid exists and that the process ID listed
 there corresponds to sshd before running '/etc/init.d/ssh reload' from if-up
 script; SIGHUP is racy if called at boot before sshd has a chance to install
 its signal handler, but fortunately the pid file is written after that which
 lets us avoid the race (closes: #502444).

---
 debian/changelog | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'debian/changelog')

diff --git a/debian/changelog b/debian/changelog
index 049d0740b..a58cca063 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,6 +3,11 @@ openssh (1:5.1p1-5) UNRELEASED; urgency=low
   * Backport from upstream CVS (Markus Friedl):
     - packet_disconnect() on padding error, too. Should reduce the success
       probability for the CPNI-957037 Plaintext Recovery Attack to 2^-18.
+  * Check that /var/run/sshd.pid exists and that the process ID listed there
+    corresponds to sshd before running '/etc/init.d/ssh reload' from if-up
+    script; SIGHUP is racy if called at boot before sshd has a chance to
+    install its signal handler, but fortunately the pid file is written
+    after that which lets us avoid the race (closes: #502444).
 
  -- Colin Watson <cjwatson@debian.org>  Mon, 01 Dec 2008 16:13:14 +0000
 
-- 
cgit v1.2.3