SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libssh4-0.8.6-61.1.x86_64.rpm :
Mon Feb 11 13:00:00 2019 Tomáš Chvátal
- Drop doxygen from dependencies to avoid buildcycle

* the documentation is available online anyway for anyone to
consume and consult http://api.libssh.org

Tue Jan 8 13:00:00 2019 Pedro Monreal Gonzalez
- Added the tests in a multiple build description file
*test
* to
break the cycle for cmocka, curl, doxygen and libssh.

Sun Dec 30 13:00:00 2018 Andreas Schneider
- Update to version 0.8.6

* Fixed compilation issues with different OpenSSL versions

* Fixed StrictHostKeyChecking in new knownhosts API

* Fixed ssh_send_keepalive() with packet filter

* Fixed possible crash with knownhosts options

* Fixed issus with rekeying

* Fixed strong ECDSA keys

* Fixed some issues with rsa-sha2 extentions

* Fixed access violation in ssh_init() (static linking)

* Fixed ssh_channel_close() handling

Mon Oct 29 13:00:00 2018 Andreas Schneider
- Update to version 0.8.5

* Added support to get known_hosts locations with ssh_options_get()

* Fixed preferred algorithm for known hosts negotiations

* Fixed KEX with some server implementations (e.g. Cisco)

* Fixed issues with MSVC

* Fixed keyboard-interactive auth in server mode
(regression from CVE-2018-10933)

* Fixed gssapi auth in server mode (regression from CVE-2018-10933)

* Fixed socket fd handling with proxy command

* Fixed a memory leak with OpenSSL

Tue Oct 16 14:00:00 2018 Andreas Schneider
- Update to version 0.8.4

* Fixed CVE-2018-10933; (bsc#1108020)

* Fixed building without globbing support

* Fixed possible memory leaks

* Avoid SIGPIPE on sockets

Fri Sep 21 14:00:00 2018 Andreas Schneider
- Update to version 0.8.3

* Added support for rsa-sha2

* Added support to parse private keys in openssh container format
(other than ed25519)

* Added support for diffie-hellman-group18-sha512 and
diffie-hellman-group16-sha512

* Added ssh_get_fingerprint_hash()

* Added ssh_pki_export_privkey_base64()

* Added support for Match keyword in config file

* Improved performance and reduced memory footprint for sftp

* Fixed ecdsa publickey auth

* Fixed reading a closed channel

* Added support to announce posix-renameAATTopenssh.com and
hardlinkAATTopenssh.com in the sftp server
- Removed patch: 0001-poll-Fix-size-types-in-ssh_event_free.patch

Thu Aug 30 14:00:00 2018 Andreas Schneider
- Update to version 0.8.2

* Added sha256 fingerprints for pubkeys

* Improved compiler flag detection

* Fixed race condition in reading sftp messages

* Fixed doxygen generation and added modern style

* Fixed library initialization on Windows

* Fixed __bounded__ attribute detection

* Fixed a bug in the options parser

* Fixed documentation for new knwon_hosts API
- Added patch: 0001-poll-Fix-size-types-in-ssh_event_free.patch

* Fix compiler warning on SLE12

Mon Aug 27 14:00:00 2018 vcizekAATTsuse.com
- Add missing zlib-devel dependency which was previously pulled in
by libopenssl-devel

Tue Aug 14 14:00:00 2018 asnAATTcryptomilk.org
- Remove the libssh_threads.so symlink

Mon Aug 13 14:00:00 2018 asnAATTcryptomilk.org
- Update to version 0.8.1

* Fixed version number in the header

* Fixed version number in pkg-config and cmake config

* Fixed library initialization

* Fixed attribute detection

Fri Aug 10 14:00:00 2018 asnAATTcryptomilk.org
- Update to version 0.8.0

* Removed support for deprecated SSHv1 protocol

* Added new connector API for clients

* Added new known_hosts parsing API

* Added support for OpenSSL 1.1

* Added support for chacha20-poly1305 cipher

* Added crypto backend for mbedtls crypto library

* Added ECDSA support with gcrypt backend

* Added advanced client and server testing using cwrap.org

* Added support for curve25519-sha256 alias

* Added support for global known_hosts file

* Added support for symbol versioning

* Improved ssh_config parsing

* Improved threading support
- Removed 0001-libcrypto-Remove-AES_ctr128_encrypt.patch
- Removed 0001-libcrypto-Introduce-a-libcrypto-compat-file.patch
- Removed 0001-libcrypto-Use-newer-API-for-HMAC.patch
- Removed 0001-libcrypto-Use-a-pointer-for-EVP_MD_CTX.patch
- Removed 0001-libcrypto-Use-a-pointer-for-EVP_CIPHER_CTX.patch
- Removed 0001-pki_crypto-Use-getters-and-setters-for-opaque-keys-a.patch
- Removed 0001-threads-Use-new-API-call-for-OpenSSL-CRYPTO-THREADID.patch
- Removed 0001-cmake-Use-configure-check-for-CRYPTO_ctr128_encrypt.patch
- Removed 0001-config-Bugfix-Dont-skip-unseen-opcodes.patch

Fri Mar 9 13:00:00 2018 jmcdonoughAATTsuse.com
- Disable timeout testing on slow build systems (bsc#1084713)

* 0001-disable-timeout-test-on-slow-buildsystems.patch

Sun Dec 24 13:00:00 2017 fabianAATTritter-vogt.de
- Add patch to fix parsing of config files (boo#1067782):

* 0001-config-Bugfix-Dont-skip-unseen-opcodes.patch

Fri Sep 15 14:00:00 2017 vcizekAATTsuse.com
- add support for building with OpenSSL 1.1 (bsc#1055266)

* added patches:

* 0001-cmake-Use-configure-check-for-CRYPTO_ctr128_encrypt.patch

* 0001-libcrypto-Introduce-a-libcrypto-compat-file.patch

* 0001-libcrypto-Remove-AES_ctr128_encrypt.patch

* 0001-libcrypto-Use-a-pointer-for-EVP_MD_CTX.patch

* 0001-libcrypto-Use-a-pointer-for-EVP_CIPHER_CTX.patch

* 0001-libcrypto-Use-newer-API-for-HMAC.patch

* 0001-pki_crypto-Use-getters-and-setters-for-opaque-keys-a.patch

* 0001-threads-Use-new-API-call-for-OpenSSL-CRYPTO-THREADID.patch

Mon Jul 31 14:00:00 2017 astiegerAATTsuse.com
- add package keyring and verify source signature

Thu Apr 13 14:00:00 2017 asnAATTcryptomilk.org
- Update to version 0.7.5

* Fixed a memory allocation issue with buffers

* Fixed PKI on Windows

* Fixed some SSHv1 functions

* Fixed config hostname expansion

Wed Feb 8 13:00:00 2017 asnAATTcryptomilk.org
- Update to version 0.7.4

* Added id_ed25519 to the default identity list

* Fixed sftp EOF packet handling

* Fixed ssh_send_banner() to confirm with RFC 4253

* Fixed some memory leaks
- Removed patch gcc5-fixes.patch

Wed Dec 7 13:00:00 2016 jengelhAATTinai.de
- Update descriptions. Drop redundant pkgconfig require
(it\'s autodetected).

Wed Oct 7 14:00:00 2015 asnAATTcryptomilk.org
- Update to version 0.7.2

* Fixed OpenSSL detection on Windows

* Fixed return status for ssh_userauth_agent()

* Fixed KEX to prefer hmac-sha2-256

* Fixed sftp packet handling

* Fixed return values of ssh_key_is_(public|private)

* Fixed bug in global success reply

Mon Jul 20 14:00:00 2015 tchvatalAATTsuse.com
- Enable testsuite run to check the state of libssh itself
- Use SUSE macros to define environment clearly
- Enable gssapi by adding krb5 dependency

Tue Jun 30 14:00:00 2015 asnAATTcryptomilk.org
- Update to version 0.7.1

* Fixed SSH_AUTH_PARTIAL auth with auto public key

* Fixed memory leak in session options

* Fixed allocation of ed25519 public keys

* Fixed channel exit-status and exit-signal

* Reintroduce ssh_forward_listen()

Mon May 11 14:00:00 2015 asnAATTcryptomilk.org
- Update to version 0.7.0

* Added support for ed25519 keys

* Added SHA2 algorithms for HMAC

* Added improved and more secure buffer handling code

* Added callback for auth_none_function

* Added support for ECDSA private key signing

* Added more tests

* Fixed a lot of bugs

* Improved API documentation

Wed May 6 14:00:00 2015 dmuellerAATTsuse.com
- add gcc5-fixes.patch: Fix build against GCC 5.x

Thu Apr 30 14:00:00 2015 asnAATTcryptomilk.org
- Update to version 0.6.5

* Fixed CVE-2015-3146

* Fixed port handling in config file

* Fixed the build with libgcrypt

* Fixed SFTP endian issues (rlo #179)

* Fixed uninitilized sig variable (rlo #167)

* Fixed polling issues which could result in a hang

* Fixed handling of EINTR in ssh_poll() (rlo #186)

* Fixed C99 issues with __func__

* Fixed some memory leaks

* Improved macro detection on Windows

Thu Jan 22 13:00:00 2015 cooloAATTsuse.com
- removing argument from popd
- add baselibs.conf as source

Fri Dec 19 13:00:00 2014 asnAATTcryptomilk.org
- Update to version 0.6.4

* Fixed CVE-2014-8132.

* Added SHA-2 for session ID signing with ECDSA keys.

* Added support for ECDSA host keys.

* Added support for more ECDSA hostkey algorithms.

* Added ssh_pki_key_ecdsa_name() API.

* Fixed setting the bindfd only after successful listen.

* Fixed issues with user created sockets.

* Fixed several issues in libssh C++ wrapper.

* Fixed several documentation issues.

* Fixed channel exit-signal request.

* Fixed X11 request screen number in messages.

* Fixed several memory leaks.

Tue Mar 4 13:00:00 2014 asnAATTcryptomilk.org
- Update to version 0.6.3

* Fix CVE-2014-0017.

Mon Feb 10 13:00:00 2014 asnAATTcryptomilk.org
- Update to version 0.6.1

* Added support for libgcrypt 1.6.

* Added ssh_channel_accept_forward().

* Added known_hosts heuristic during connection (#138).

* Added getters for session cipher names.

* Fixed decrypt of zero length buffer.

* Fixed padding in RSA signature blobs.

* Fixed DSA signature extraction.

* Fixed some memory leaks.

* Fixed read of non-connected socket.

* Fixed thread dectection.

Wed Jan 8 13:00:00 2014 asnAATTcryptomilk.org
- Update to version 0.6.0

* Added new publicy key API.

* Added new userauth API.

* Added ssh_get_publickey_hash() function.

* Added ssh_get_poll_flags() function.

* Added gssapi-mic userauth.

* Added GSSAPIServerIdentity option.

* Added GSSAPIClientIdentity option.

* Added GSSAPIDelegateCredentials option.

* Added new callback based server API.

* Added Elliptic Curve DSA (ECDSA) support (with OpenSSL).

* Added Elliptic Curve Diffie Hellman (ECDH) support.

* Added Curve25519 for ECDH key exchange.

* Added improved logging system.

* Added SSH-agent forwarding.

* Added key-reexchange.

* Added more unit tests.

* Improved documentation.

* Fixed timeout handling.

Thu Dec 19 13:00:00 2013 kukukAATTsuse.de
- Remove remove-pedantic-errors.diff, does not apply anymore and is
not needed anymore.

Thu Oct 31 13:00:00 2013 javierAATTopensuse.org
- Update to version 0.6.0rc1

* Added new publicy key API.

* Added new userauth API.

* Added gssapi-mic userauth.

* Added new callback based server API.

* Added Elliptic Curve DSA (ECDSA) support (with OpenSSL).

* Added Elliptic Curve Diffie Hellman (ECDH) support.

* Added improved logging system.

* Added SSH-agent forwarding.

* Added key-reexchange.

* Improved documentation.

* Fixed timeout handling.

Mon Jul 29 14:00:00 2013 asnAATTcryptomilk.org
- Add baselibs.conf
- Require xz to fix build on older distro versions.

Fri Jul 26 14:00:00 2013 asnAATTcryptomilk.org
- Update to version 0.5.5

* BUG 103: Fix ProxyCommand parsing.
- Remove patch fix-proxycomand-parsing1.diff
- Remove patch fix-proxy-command-none.diff

* Fix setting -D_FORTIFY_SOURCE=2.

* Fix pollset error return if emtpy.

* Fix NULL pointer checks in channel functions.

* Several bugfixes.

Thu Jul 25 14:00:00 2013 lbeltrameAATTkde.org
- Add fix-proxycomand-parsing1.diff: fix ProxyCommand parsing in
libssh (upstream libssh bug 103)
- Add fix-proxy-command-none.diff: fix ProxyCommand when it is
\"none\" (upstream libssh bug 103)

Tue Jan 22 13:00:00 2013 asnAATTcryptomilk.org
- Update to version 0.5.4

* CVE-2013-0176 - NULL dereference leads to denial of service

* Fixed several NULL pointer dereferences in SSHv1.

* Fixed a free crash bug in options parsing.

Tue Nov 20 13:00:00 2012 asnAATTcryptomilk.org
- Update to version 0.5.3

* CVE-2012-4559 Fixed multiple double free() flaws.

* CVE-2012-4560 Fixed multiple buffer overflow flaws.

* CVE-2012-4561 Fixed multiple invalid free() flaws.

* rlo #84 - Fix bug in sftp_mkdir not returning on error.

* rlo #85 - Fixed a possible channel infinite loop if the connection dropped.

* rlo #88 - Added missing channel request_state and set it to accepted.

* rlo #89 - Reset error state to no error on successful SSHv1 authentiction.

* Fixed a possible use after free in ssh_free().

* Fixed multiple possible NULL pointer dereferences.

* Fixed multiple memory leaks in error paths.

* Fixed timeout handling.

* Fixed regression in pre-connected socket setting.

* Handle all unknown global messages.

Tue Feb 7 13:00:00 2012 jengelhAATTmedozas.de
- Ensure pkgconfig symbols are provided

Tue Jan 31 13:00:00 2012 jengelhAATTmedozas.de
- Remove redundant tags/sections per specfile guideline suggestions
- Parallel building using %_smp_mflags
- Make pkgconfig provides available
- Add patch to work around compilation problems on SLES11SP1

Sat Sep 17 14:00:00 2011 asnAATTcryptomilk.org
- Update to version 0.5.2

* Increased window size x10.

* Fixed SSHv1.

* Fixed bugged lists.

* Fixed use-after-free + inconsistent callbacks call in poll.

* Fixed scp documentation.

* Fixed possible infinite loop in channel_read().

* Fixed handling of short reads of sftp_async_read().

* Fixed handling request service timeout in blocking mode.

* Fixed ssh_auth_list() documentation.

* Fixed incorrect return values in ssh_channel_write().

* Fixed an infinite loop in the termination callback.

* Fixed handling of SSH_AGAIN in channel_open().

* Fixed \"status -5 inflating zlib packet\"

Tue Sep 6 14:00:00 2011 crrodriguezAATTopensuse.org
- Build with OPENSSL_LOAD_CONF so we respect user\'s choice
of which \"openssl engine\" to use for crypto (aes-ni,intel-accel)

Tue Aug 9 14:00:00 2011 asnAATTcryptomilk.org
- Update to version 0.5.1

* Added checks for NULL pointers in string.c.

* Set the channel max packet size to 32768.

* Don\'t (de)compress empty buffers.

* Fixed ssh_scp_write so it works when doing recursive copy.

* Fixed another source of endless wait.

* Fixed an endless loop in case of a channel_open error.

* Fixed session timeout handling.

* Fixed ssh_channel_from_local() loop.

* Fixed permissions of scp example when we copy a file.

* Workaround ssh_get_user_home_dir on LDAP users.

* Added pkg-config support for libssh_threads.

* Fixed compilation without server and sftp modes.

* Fix static .lib overwriting on Windows.

Tue May 31 14:00:00 2011 asnAATTcryptomilk.org
- Update to version 0.5.0

* Added ssh_ prefix to all functions.

* Added complete Windows support.

* Added improved server support.

* Added unit tests for a lot of functions.

* Added asynchronous service request.

* Added a multiplatform ssh_getpass() function.

* Added a tutorial.

* Added a lot of documentation.

* Fixed a lot of bugs.

* Fixed several memory leaks.

Sat Jan 15 13:00:00 2011 asnAATTcryptomilk.org
- Update to version 0.4.8

* Fixed memory leaks in session signing.

* Fixed memory leak in ssh_print_hexa.

* Fixed problem with ssh_connect w/ timeout and fd > 1024.

* Fixed some warnings on OS/2.

* Fixed installation path for OS/2.

Mon Dec 27 13:00:00 2010 asnAATTcynapses.org
- Update to version 0.4.7

* Fixed a possible memory leak in ssh_get_user_home().

* Fixed a memory leak in sftp_xstat.

* Fixed uninitialized fd->revents member.

* Fixed timout value in ssh_channel_accept().

* Fixed length checks in ssh_analyze_banner().

* Fixed a possible data overread and crash bug.

* Fixed setting max_fd which breaks ssh_select().

* Fixed some pedantic build warnings.

* Fixed a memory leak with session->bindaddr.

Sun Sep 5 14:00:00 2010 asnAATTcynapses.org
- Update to version 0.4.6

* Added a cleanup function to free the ws2_32 library.

* Fixed build with gcc 3.4.

* Fixed the Windows build on Vista and newer.

* Fixed the usage of WSAPoll() on Windows.

* Fixed \"AATTdeprecated\" in doxygen

* Fixed some mingw warnings.

* Fixed handling of opened channels.

* Fixed keepalive problem on older openssh servers.

* Fixed testing for big endian on Windows.

* Fixed the Windows preprocessor macros and defines.

Tue Jul 13 14:00:00 2010 anschneiderAATTexsuse.de
- Update to version 0.4.5

* Added option to bind a client to an ip address.

* Fixed the ssh socket polling function.

* Fixed Windows related bugs in bsd_poll().

* Fixed serveral build warnings.

Mon May 31 14:00:00 2010 anschneiderAATTexsuse.de
- Update to version 0.4.4

* Fixed some bugs ein path expand functions.

Mon May 17 14:00:00 2010 anschneiderAATTexsuse.de
- Update to version 0.4.3

* Added global/keepalive responses.

* Added runtime detection of WSAPoll().

* Added a select(2) based poll-emulation if poll(2) is not available.

* Added a function to expand an escaped string.

* Added a function to expand the tilde from a path.

* Added a proxycommand support.

* Added ssh_privatekey_type public function

* Added the possibility to define _OPENSSL_DIR and _ZLIB_DIR.

* Fixed sftp_chown.

* Fixed sftp_rename on protocol version 3.

* Fixed a blocking bug in channel_poll.

* Fixed config parsing wich has overwritten user specified values.

* Fixed hashed [host]:port format in knownhosts

* Fixed Windows build.

* Fixed doublefree happening after a negociation error.

* Fixed aes
*-ctr with <= OpenSSL 0.9.7b.

* Fixed some documentation.

* Fixed exec example which has broken read usage.

* Fixed broken algorithm choice for server.

* Fixed a typo that we don\'t export all symbols.

* Removed the unneeded dependency to doxygen.

* Build examples only on the Linux plattform.

Mon Mar 15 13:00:00 2010 anschneiderAATTexsuse.de
- Update to version 0.4.2

* Added owner and group information in sftp attributes.

* Added missing SSH_OPTIONS_FD option.

* Added printout of owner and group in the sftp example.

* Added a prepend function for ssh_list.

* Added send back replies to openssh\'s keepalives.

* Fixed documentation in scp code

* Fixed longname parsing, this only workings with readdir.

* Fixed and added support for several identity files.

* Fixed sftp_parse_longname() on Windows.

* Fixed a race condition bug in ssh_scp_close()

* Remove config support for SSHv1 Cipher variable.

* Rename ssh_list_add to ssh_list_append.

* Rename ssh_list_get_head to ssh_list_pop_head

Mon Feb 15 13:00:00 2010 anschneiderAATTexsuse.de
- Fixed Requires.

Sat Feb 13 13:00:00 2010 anschneiderAATTexsuse.de
- Update to version 0.4.1

* Added support for aes128-ctr, aes192-ctr and aes256-ctr encryption.

* Added an example for exec.

* Added private key type detection feature in privatekey_from_file().

* Fixed zlib compression fallback.

* Fixed kex bug that client preference should be prioritary

* Fixed known_hosts file set by the user.

* Fixed a memleak in channel_accept().

* Fixed underflow when leave_function() are unbalanced

* Fixed memory corruption in handle_channel_request_open().

* Fixed closing of a file handle case of errors in privatekey_from_file().

* Fixed ssh_get_user_home_dir() to be thread safe.

* Fixed the doxygen documentation.

Thu Dec 10 13:00:00 2009 anschneiderAATTexsuse.de
- Update to version 0.4.0

* Added scp support.

* Added support for sending signals (RFC 4254, section 6.9).

* Added MSVC support.

* Added support for ~/.ssh/config.

* Added sftp extension support.

* Added X11 forwarding support for client.

* Added forward listening.

* Added support for openssh extensions (statvfs, fstatvfs).

* Added a cleaned up interface for setting options.

* Added a generic way to handle sockets asynchronously.

* Added logging of the sftp flags used to open a file.

* Added full poll() support and poll-emulation for win32.

* Added missing 64bit functions in sftp.

* Added support for ~/ and SSH_DIR/ in filenames instead of %s/.

* Fixed Fix channel_get_exit_status bug.

* Fixed calltrace logging to make it optional.

* Fixed compilation on Solaris.

* Fixed resolving of ip addresses.

* Fixed libssh compilation without server support.

* Fixed possible memory corruptions (ticket #14).

Mon Sep 14 14:00:00 2009 anschneiderAATTexsuse.de
- Update to version 0.3.4.

* Added ssh_basename and ssh_dirname.

* Added a portable ssh_mkdir function.

* Added a sftp_tell64() function.

* Added missing NULL pointer checks to crypt_set_algorithms_server.

* Fixed ssh_write_knownhost if ~/.ssh doesn\'t exist.

* Fixed a possible integer overflow in buffer_get_data().

* Fixed possible security bug in packet_decrypt().

Tue Aug 18 14:00:00 2009 anschneiderAATTexsuse.de
- Update to version 0.3.3.

* Fixed double free pointer crash in dsa_public_to_string.

* Fixed channel_get_exit_status bug.

* Fixed ssh_finalize which didn\'t clear the flag.

* Fixed memory leak introduced by previous bugfix.

* Fixed channel_poll broken when delayed EOF recvd.

* Fixed stupid \"can\'t parse known host key\" bug.

* Fixed possible memory corruption (ticket #14).

Tue Aug 4 14:00:00 2009 anschneiderAATTexsuse.de
- Update to version 0.3.2

* Added ssh_init() function.

* Added sftp_readlink() function.

* Added sftp_symlink() function.

* Fixed ssh_write_knownhost().

* Fixed compilation on Solaris.

* Fixed SSHv1 compilation.

Tue Jul 14 14:00:00 2009 anschneiderAATTexsuse.de
- Update to version 0.3.1

* Added return code SSH_SERVER_FILE_NOT_FOUND.

* Fixed compilation of SSHv1.

* Fixed several memory leaks.

* Fixed possible infinite loops.

* Fixed a possible crash bug.

* Fixed build warnings.

* Fixed cmake on BSD.

Thu May 21 14:00:00 2009 anschneiderAATTexsuse.de
- Update to version 0.3.0

* Added support for ssh-agent authentication.

* Added POSIX like sftp implementation.

* Added error checking to all functions.

* Added const to arguments where it was needed.

* Added a channel_get_exit_status() function.

* Added a channel_read_buffer() function, channel_read() is now
a POSIX like function.

* Added a more generic auth callback function.

* Added printf attribute checking for log and error functions.

* Added runtime function tracer support.

* Added NSIS build support with CPack.

* Added openssh hashed host support.

* Added API documentation for all public functions.

* Added asynchronous SFTP read function.

* Added a ssh_bind_set_fd() function.

* Fixed known_hosts parsing.

* Fixed a lot of build warnings.

* Fixed the Windows build.

* Fixed a lot of memory leaks.

* Fixed a double free corruption in the server support.

* Fixed the \"ssh_accept:\" bug in server support.

* Fixed important channel bugs.

* Refactored the socket handling.

* Switched to CMake build system.

* Improved performance.


  
ICM