| openssh-7.4p1-16.an3.x86_64
[509 KiB] |
Changelog
by Jakub Jelen (2017-11-24):
- Fix for CVE-2017-15906 (#1517226)
|
| openssh-7.4p1-13.an3.x86_64
[509 KiB] |
Changelog
by Jakub Jelen (2017-09-13):
- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)
|
| openssh-7.4p1-12.an3.x86_64
[508 KiB] |
Changelog
by Jakub Jelen (2017-08-07):
- Revert upstream change to UseDNS=no back to yes (#1478175)
|
| openssh-7.4p1-11.an3.x86_64
[509 KiB] |
Changelog
by JoungKyun.Kim (2017-08-20):
- applies CentOS 7.4 release
. Rebase to openssh 7.4 and pam_ssh_agent_auth 0.10.3 (#1341754)
. detach -cavs subpackage
. enable seccomp filter for sandboxed child
. Fix coverity scan results
. Adjust FIPS algorithms list (#1420910)
. Revert problematic feature for chroot(#1418062)
. Fix CBC weakness in released OpenSSH 7.5
. Do not completely disable SHA-1 key exchange methods in FIPS (#1324493)
. Remove wrong coverity patches
. Update seccomp filter to work on ppc64le (#1443916)
. Fix the default key exchange proposal in FIPS mode (#1438414)
. Remove another wrong coverity chunk to unbreak gsskex (#1438414)
. ControlPath too long should not be a fatal error (#1447561)
. Fix multilib issue in documentation (#1450361)
. Allow harmless syscalls for s390 crypto modules (#1451809)
. Add missing messages in FIPS mode (#1341754)
. Compiler warnings (#1341754)
|
| openssh-6.6.1p1-35.an3.x86_64
[436 KiB] |
Changelog
by Jakub Jelen (2017-03-01):
- Do not send SD_NOTIFY from forked childern (#1381997)
|
| openssh-6.6.1p1-33.an3.x86_64
[436 KiB] |
Changelog
by Jakub Jelen (2016-12-19):
- Restore login with large MOTD (#1404018)
|
| openssh-6.6.1p1-31.an3.x86_64
[436 KiB] |
Changelog
by Jakub Jelen (2016-09-06):
- Do not depend on selinux-policy (#1373297)
|
| openssh-6.6.1p1-25.an3.1.x86_64
[433 KiB] |
Changelog
by JoungKyun.Kim (2016-11-14):
- security issues
. CVE-2015-8325
privilege escalation via user's PAM environment and UseLogin=yes (#1329191)
|
| openssh-6.6.1p1-25.an3.x86_64
[433 KiB] |
Changelog
by Jakub Jelen (2016-03-16):
- CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding (#1298741)
|
| openssh-6.6.1p1-23.an3.x86_64
[868 KiB] |
Changelog
by Jakub Jelen (2016-01-13):
- Disable undocumented feauture Roaming for good (#1298218)
- prevents CVE-2016-0777 and CVE-2016-0778
|
| openssh-6.6.1p1-22.an3.x86_64
[867 KiB] |
Changelog
by JoungKyun.Kim (2015-09-25):
- rebuilt on AnNyung
- removed X option
- change server configuration
change KeyRegenerationInterval value to 0 on sshd_config
change UseDNS value to no
change GSSAPIAuthentication to no
change X11Forwarding no
add Banner directive to /etc/issue.net
add USER_LANG environment
- change client configuration
change GSSAPIAuthentication value to no
change ForwardX11Trusted no
add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
|
| openssh-6.6.1p1-12.an3.x86_64
[863 KiB] |
Changelog
by JoungKyun.Kim (2015-08-31):
- rebuilt on AnNyung
- removed X option
- change server configuration
change KeyRegenerationInterval value to 0 on sshd_config
change UseDNS value to no
change GSSAPIAuthentication to no
change X11Forwarding no
add Banner directive to /etc/issue.net
add USER_LANG environment
- change client configuration
change GSSAPIAuthentication value to no
change ForwardX11Trusted no
add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
|
| openssh-6.4p1-8.an3.x86_64
[700 KiB] |
Changelog
by JoungKyun.Kim (2014-10-22):
- rebuilt on AnNyung
- removed X option
- change server configuration
change KeyRegenerationInterval value to 0 on sshd_config
change UseDNS value to no
change GSSAPIAuthentication to no
change X11Forwarding no
add Banner directive to /etc/issue.net
add USER_LANG environment
- change client configuration
change GSSAPIAuthentication value to no
change ForwardX11Trusted no
add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
|