diff options
| author | Paul Eggleton <paul.eggleton@linux.intel.com> | 2014-12-26 15:05:36 +0000 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-01-07 23:35:06 +0000 |
| commit | 3fb5191d4da52c6b352a23881c0ea63c2e348619 (patch) | |
| tree | d64060e9d298fc5cf45e4650f11c615144bbfcc1 /meta/recipes-connectivity/openssh/openssh/openssh-CVE-2011-4327.patch | |
| parent | 060e35492d5b4d416ede1fd18db3647796271aa6 (diff) | |
| download | poky-3fb5191d4da52c6b352a23881c0ea63c2e348619.tar.gz | |
openssh: upgrade to 6.7p1
* Drop two CVE patches already handled upstream.
* Drop nostrip.patch which no longer applies and use the existing
--disable-strip configure option instead.
* OpenSSH 6.7+ no longer supports tcp wrappers. We could apply the
Debian patch to add support back in, but it seems best to follow
upstream here unless we have a good reason to do otherwise.
(From OE-Core rev: 59e0833e24e4945569d36928dc0f231e822670ba)
Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-connectivity/openssh/openssh/openssh-CVE-2011-4327.patch')
| -rw-r--r-- | meta/recipes-connectivity/openssh/openssh/openssh-CVE-2011-4327.patch | 29 |
1 files changed, 0 insertions, 29 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh/openssh-CVE-2011-4327.patch b/meta/recipes-connectivity/openssh/openssh/openssh-CVE-2011-4327.patch deleted file mode 100644 index 30c11cf432..0000000000 --- a/meta/recipes-connectivity/openssh/openssh/openssh-CVE-2011-4327.patch +++ /dev/null | |||
| @@ -1,29 +0,0 @@ | |||
| 1 | openssh-CVE-2011-4327 | ||
| 2 | |||
| 3 | A security flaw was found in the way ssh-keysign, | ||
| 4 | a ssh helper program for host based authentication, | ||
| 5 | attempted to retrieve enough entropy information on configurations that | ||
| 6 | lacked a built-in entropy pool in OpenSSL (a ssh-rand-helper program would | ||
| 7 | be executed to retrieve the entropy from the system environment). | ||
| 8 | A local attacker could use this flaw to obtain unauthorized access to host keys | ||
| 9 | via ptrace(2) process trace attached to the 'ssh-rand-helper' program. | ||
| 10 | |||
| 11 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4327 | ||
| 12 | http://www.openssh.com/txt/portable-keysign-rand-helper.adv | ||
| 13 | |||
| 14 | Upstream-Status: Pending | ||
| 15 | |||
| 16 | Signed-off-by: Li Wang <li.wang@windriver.com> | ||
| 17 | --- a/ssh-keysign.c | ||
| 18 | +++ b/ssh-keysign.c | ||
| 19 | @@ -170,6 +170,10 @@ | ||
| 20 | key_fd[i++] = open(_PATH_HOST_DSA_KEY_FILE, O_RDONLY); | ||
| 21 | key_fd[i++] = open(_PATH_HOST_ECDSA_KEY_FILE, O_RDONLY); | ||
| 22 | key_fd[i++] = open(_PATH_HOST_RSA_KEY_FILE, O_RDONLY); | ||
| 23 | + if (fcntl(key_fd[0], F_SETFD, FD_CLOEXEC) != 0 || | ||
| 24 | + fcntl(key_fd[1], F_SETFD, FD_CLOEXEC) != 0 || | ||
| 25 | + fcntl(key_fd[2], F_SETFD, FD_CLOEXEC) != 0) | ||
| 26 | + fatal("fcntl failed"); | ||
| 27 | |||
| 28 | original_real_uid = getuid(); /* XXX readconf.c needs this */ | ||
| 29 | if ((pw = getpwuid(original_real_uid)) == NULL) | ||