summaryrefslogtreecommitdiffstats
path: root/package/btrfs-progs/0003-btrfs-progs-add-missing-limits-headers.patch
diff options
context:
space:
mode:
authorBaruch Siach <baruch@tkos.co.il>2017-03-21 15:11:22 +0200
committerPeter Korsgaard <peter@korsgaard.com>2017-03-21 17:26:45 +0100
commit2204f4deb1c6c6ff4accd84b5aa2d42f5930b730 (patch)
treeb98ae36e1d9aba845c86cb0a8af576e8d5c62e46 /package/btrfs-progs/0003-btrfs-progs-add-missing-limits-headers.patch
parent1a83dda003cc25999589ec392c0b6c81afe7528d (diff)
downloadbuildroot-2204f4deb1c6c6ff4accd84b5aa2d42f5930b730.tar.gz
buildroot-2204f4deb1c6c6ff4accd84b5aa2d42f5930b730.zip
openssh: security bump to version 7.5
From the release notes (https://www.openssh.com/txt/release-7.5): Security -------- * ssh(1), sshd(8): Fix weakness in CBC padding oracle countermeasures that allowed a variant of the attack fixed in OpenSSH 7.3 to proceed. Note that the OpenSSH client disables CBC ciphers by default, sshd offers them as lowest-preference options and will remove them by default entriely in the next release. Reported by Jean Paul Degabriele, Kenny Paterson, Martin Albrecht and Torben Hansen of Royal Holloway, University of London. * sftp-client(1): [portable OpenSSH only] On Cygwin, a client making a recursive file transfer could be maniuplated by a hostile server to perform a path-traversal attack. creating or modifying files outside of the intended target directory. Reported by Jann Horn of Google Project Zero. [Peter: mention security fixes] Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/btrfs-progs/0003-btrfs-progs-add-missing-limits-headers.patch')
0 files changed, 0 insertions, 0 deletions
OpenPOWER on IntegriCloud