openssh: fix for CVE-2014-2653 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Chen Qi <Qi.Chen@windriver.com>	2014-05-13 15:46:27 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-05-13 19:32:06 +0100
commit	f5180963845442587431bb7e4aa04a143ca743c4 (patch)
tree	6db81fb459b3d7ee46d71e930f9ece148a94da11 /meta/recipes-support/ca-certificates
parent	fbf63c30c89b39e0b021af6708c53a24f43fe786 (diff)
download	poky-f5180963845442587431bb7e4aa04a143ca743c4.tar.gz

openssh: fix for CVE-2014-2653

The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate. (From OE-Core rev: 7b2fff61b3d1c0566429793ee348fa8978ef0cba) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-support/ca-certificates')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: