openssh: fix for CVE-2014-2653 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Chen Qi <Qi.Chen@windriver.com>	2014-05-13 15:46:27 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-05-29 13:43:28 +0100
commit	ac9725acc58ddfbf0f612a59614198af5c79b060 (patch)
tree	2959d7023869baa5c7f9622b12a6ffc89c878d11 /meta/recipes-extended/less
parent	b6124bdbfba17cf15cc71fee7c5b9313dfa3c604 (diff)
download	poky-ac9725acc58ddfbf0f612a59614198af5c79b060.tar.gz

openssh: fix for CVE-2014-2653

The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate. (From OE-Core rev: 7b2fff61b3d1c0566429793ee348fa8978ef0cba) (From OE-Core rev: 6a8a9903de24cc7e1f27b1f7202bd4157719327c) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Conflicts: meta/recipes-connectivity/openssh/openssh_6.5p1.bb

Diffstat (limited to 'meta/recipes-extended/less')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: