Changelog for
libssh2-debugsource-1.10.0-1.el8.x86_64.rpm :
* Mon Aug 30 2021 Paul Howarth
- 1.10.0-1- Update to 1.10.0 - Adds agent forwarding support - Adds OpenSSH Agent support on Windows - Adds ECDSA key support using the Mbed TLS backend - Adds ECDSA cert authentication - Adds diffie-hellman-group14-sha256, diffie-hellman-group16-sha512, diffie-hellman-group18-sha512 key exchanges - Adds support for PKIX key reading when using ed25519 with OpenSSL - Adds support for EWOULDBLOCK on VMS systems - Adds support for building with OpenSSL 3 - Adds support for using FIPS mode in OpenSSL - Adds debug symbols when building with MSVC - Adds support for building on the 3DS - Adds unicode build support on Windows - Restores os400 building - Increases min, max and opt Diffie Hellman group values - Improves portability of the make file - Improves timeout behaviour with 2FA keyboard auth - Various improvements to the Wincng backend - Fixes reading partial packet replies when using an agent - Fixes Diffie Hellman key exchange on Windows 1903+ builds - Fixes building tests with older versions of OpenSSL - Fixes possible multiple definition warnings - Fixes potential cast issues _libssh2_ecdsa_key_get_curve_type() - Fixes potential use after free if libssh2_init() is called twice - Improved linking when using Mbed TLS - Fixes call to libssh2_crypto_exit() if crypto hasn\'t been initialized - Fixes crash when loading public keys with no id - Fixes possible out of bounds read when exchanging keys - Fixes possible out of bounds read when reading packets - Fixes possible out of bounds read when opening an X11 connection - Fixes possible out of bounds read when ecdh host keys - Fixes possible hang when trying to read a disconnected socket - Fixes a crash when using the delayed compression option - Fixes read error with large known host entries - Fixes various warnings - Fixes various small memory leaks - Improved error handling, various detailed errors will now be reported - Builds are now using OSS-Fuzz - Builds now use autoreconf instead of a custom build script - cmake now respects install directory - Improved CI backend - Updated HACKING-CRYPTO documentation - Use markdown file extensions - Improved unit tests
* Thu Jul 22 2021 Fedora Release Engineering - 1.9.0-8- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Tue Jan 26 2021 Fedora Release Engineering - 1.9.0-7- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering - 1.9.0-6- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri Mar 27 2020 Paul Howarth - 1.9.0-5- Switch to https:// upstream URLs- Full groff (not just groff-base) needed for the mansyntax check
* Wed Jan 29 2020 Fedora Release Engineering - 1.9.0-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Wed Oct 30 2019 Kamil Dudka - 1.9.0-3- Fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)
* Thu Jul 25 2019 Fedora Release Engineering - 1.9.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Thu Jun 20 2019 Paul Howarth - 1.9.0-1- Update to 1.9.0 - Fixed integer overflow leading to out-of-bounds read (CVE-2019-13115) - Adds ECDSA keys and host key support when using OpenSSL - Adds ED25519 key and host key support when using OpenSSL 1.1.1 - Adds OpenSSH style key file reading - Adds AES CTR mode support when using WinCNG - Adds PEM passphrase protected file support for libgcrypt and WinCNG - Adds SHA256 hostkey fingerprint - Adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() - Adds explicit zeroing of sensitive data in memory - Adds additional bounds checks to network buffer reads - Adds the ability to use the server default permissions when creating sftp directories - Adds support for building with OpenSSL no engine flag - Adds support for building with LibreSSL - Increased sftp packet size to 256k - Fixed oversized packet handling in sftp - Fixed building with OpenSSL 1.1 - Fixed a possible crash if sftp stat gets an unexpected response - Fixed incorrect parsing of the KEX preference string value - Fixed conditional RSA and AES-CTR support - Fixed a small memory leak during the key exchange process - Fixed a possible memory leak of the ssh banner string - Fixed various small memory leaks in the backends - Fixed possible out of bounds read when parsing public keys from the server - Fixed possible out of bounds read when parsing invalid PEM files - No longer null terminates the scp remote exec command - Now handle errors when Diffie Hellman key pair generation fails - Fixed compiling on Windows with the flag STDCALL=ON - Improved building instructions - Improved unit tests- Needs OpenSSL ≥ 1.0.1 now as ECC support is assumed- Modernize spec somewhat as EL-6 can no longer be supported
* Tue Mar 26 2019 Paul Howarth - 1.8.2-1- Update to 1.8.2 - Fixed the misapplied userauth patch that broke 1.8.1 - Moved the MAX size declarations from the public header
* Tue Mar 19 2019 Paul Howarth - 1.8.1-1- Update to 1.8.1 - Fixed possible integer overflow when reading a specially crafted packet (CVE-2019-3855) - Fixed possible integer overflow in userauth_keyboard_interactive with a number of extremely long prompt strings (CVE-2019-3863) - Fixed possible integer overflow if the server sent an extremely large number of keyboard prompts (CVE-2019-3856) - Fixed possible out of bounds read when processing a specially crafted packet (CVE-2019-3861) - Fixed possible integer overflow when receiving a specially crafted exit signal message channel packet (CVE-2019-3857) - Fixed possible out of bounds read when receiving a specially crafted exit status message channel packet (CVE-2019-3862) - Fixed possible zero byte allocation when reading a specially crafted SFTP packet (CVE-2019-3858) - Fixed possible out of bounds reads when processing specially crafted SFTP packets (CVE-2019-3860) - Fixed possible out of bounds reads in _libssh2_packet_require(v) (CVE-2019-3859)- Fix mis-applied patch in the fix of CVE-2019-3859 - https://github.com/libssh2/libssh2/issues/325 - https://github.com/libssh2/libssh2/pull/327
* Mon Feb 04 2019 Paul Howarth - 1.8.0-10- Explicitly run the test suite in the en_US.UTF-8 locale to work around flaky locale settings in mock builders
* Fri Feb 01 2019 Fedora Release Engineering - 1.8.0-9- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering - 1.8.0-8- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 07 2018 Fedora Release Engineering - 1.8.0-7- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Sat Feb 03 2018 Igor Gnatenko - 1.8.0-6- Switch to %ldconfig_scriptlets
* Tue Sep 12 2017 Paul Howarth - 1.8.0-5- scp: Do not NUL-terminate the command for remote exec (#1489736, GH#208)- Make devel package dependency on main package arch-specific- Drop EL-5 support - noarch sub-packages always available now - Drop legacy Group: and BuildRoot: tags - Drop explicit buildroot cleaning - %{__isa_bits} always defined now
* Thu Aug 03 2017 Fedora Release Engineering - 1.8.0-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering - 1.8.0-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Feb 10 2017 Fedora Release Engineering - 1.8.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Tue Oct 25 2016 Paul Howarth - 1.8.0-1- Update to 1.8.0 - Added a basic dockerised test suite - crypto: Add support for the mbedTLS backend - See RELEASE-NOTES for details of bug fixes
* Thu Oct 20 2016 Kamil Dudka - 1.7.0-7- Make curl test-suite work again with valgrind enabled
* Tue Oct 11 2016 Tomáš Mráz - 1.7.0-6- Rebuild with OpenSSL 1.1.0
* Sun Mar 06 2016 Paul Howarth - 1.7.0-5- Revert parts of previous change that broke EL-5 compatibility- Include NEWS in docs package, it\'s much more than RELEASE-NOTES
* Sat Mar 05 2016 Peter Robinson - 1.7.0-4- Modernise spec (no we really don\'t care about el4/fc4)- Don\'t ship ChangeLog/NEWS, duplicates of RELEASE-NOTES
* Wed Feb 24 2016 Paul Howarth - 1.7.0-3- Drop UTF-8 patch, which breaks things rather than fixes them
* Wed Feb 24 2016 Kamil Dudka - 1.7.0-2- diffie_hellman_sha1: Convert bytes to bits (additional fix for CVE-2016-0787)
* Tue Feb 23 2016 Paul Howarth - 1.7.0-1- Update to 1.7.0 - diffie_hellman_sha256: Convert bytes to bits (CVE-2016-0787); see http://www.libssh2.org/adv_20160223.html - libssh2_session_set_last_error: Add function - See RELEASE-NOTES for details of bug fixes
* Thu Feb 04 2016 Fedora Release Engineering - 1.6.0-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Tue Nov 10 2015 Paul Howarth - 1.6.0-3- Fix pkg-config --libs output (#1279966)
* Wed Jun 17 2015 Fedora Release Engineering - 1.6.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Sun Jun 14 2015 Paul Howarth - 1.6.0-1- Update to 1.6.0 - Added CMake build system - Added libssh2_userauth_publickey_frommemory() - See RELEASE-NOTES for details of bug fixes
* Wed Mar 11 2015 Paul Howarth - 1.5.0-1- Update to 1.5.0 - See RELEASE-NOTES for details of bug fixes and enhancements - Security Advisory for CVE-2015-1782, using SSH_MSG_KEXINIT data unbounded
* Fri Oct 10 2014 Kamil Dudka 1.4.3-16- prevent a not-connected agent from closing STDIN (#1147717)
* Sun Aug 17 2014 Fedora Release Engineering - 1.4.3-15- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Fri Jul 18 2014 Tom Callaway - 1.4.3-14- fix license handling
* Sat Jun 07 2014 Fedora Release Engineering - 1.4.3-13- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed Apr 30 2014 Kamil Dudka 1.4.3-12- Fix curl\'s excessive memory consumption during scp download
* Mon Feb 17 2014 Paul Howarth - 1.4.3-11- The aarch64 buildroot seems to have the same locale issue as the PPC one
* Mon Feb 17 2014 Karsten Hopp 1.4.3-10- Next attempt to work around a self check problem on PPC
*
* Mon Feb 17 2014 Karsten Hopp 1.4.3-9- Skip self checks on ppc
*
* Wed Aug 14 2013 Kamil Dudka 1.4.3-8- Fix very slow sftp upload to localhost- Fix a use after free in channel.c
* Sat Aug 03 2013 Fedora Release Engineering - 1.4.3-7- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Tue Apr 09 2013 Paul Howarth 1.4.3-6- Revert \'Modernize the spec file\' so as to retain EL-5 spec compatibility
* Tue Apr 09 2013 Richard W.M. Jones 1.4.3-5- Add three patches from upstream git required for qemu ssh block driver- Modernize the spec file:
* Remove BuildRoot
* Remove Group
* Remove clean section
* Don\'t need to clean up buildroot before installing
* Wed Apr 03 2013 Paul Howarth 1.4.3-4- Avoid polluting libssh2.pc with linker options (#947813)
* Tue Mar 26 2013 Kamil Dudka 1.4.3-3- Avoid collisions between 32-bit and 64-bit builds running on a single build host
* Thu Feb 14 2013 Fedora Release Engineering - 1.4.3-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Wed Nov 28 2012 Paul Howarth 1.4.3-1- Update to 1.4.3 - compression: add support for zlibAATTopenssh.com - sftp_read: return error if a too large package arrives - libssh2_hostkey_hash.3: update the description of return value - Fixed MSVC NMakefile - examples: use stderr for messages, stdout for data - openssl: do not leak memory when handling errors - improved handling of disabled MD5 algorithm in OpenSSL - known_hosts: Fail when parsing unknown keys in known_hosts file - configure: gcrypt doesn\'t come with pkg-config support - session_free: wrong variable used for keeping state - libssh2_userauth_publickey_fromfile_ex.3: mention publickey == NULL - comp_method_zlib_decomp: handle Z_BUF_ERROR when inflating- Drop upstreamed patches
* Wed Nov 07 2012 Kamil Dudka 1.4.2-4- examples: use stderr for messages, stdout for data (upstream commit b31e35ab)- Update libssh2_hostkey_hash(3) man page (upstream commit fe8f3deb)
* Wed Sep 26 2012 Kamil Dudka 1.4.2-3- Fix basic functionality of libssh2 in FIPS mode- Skip SELinux-related quirks on recent distros to prevent a test-suite failure
* Thu Jul 19 2012 Fedora Release Engineering - 1.4.2-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Sun May 20 2012 Paul Howarth 1.4.2-1- Update to 1.4.2 - Return LIBSSH2_ERROR_SOCKET_DISCONNECT on EOF when reading banner - userauth.c: fread() from public key file to correctly detect any errors - configure.ac: add option to disable build of the example applications - added \'Requires.private:\' line to libssh2.pc - SFTP: filter off incoming \"zombie\" responses - gettimeofday: no need for a replacement under cygwin - SSH_MSG_CHANNEL_REQUEST: default to want_reply - win32/libssh2_config.h: remove hardcoded #define LIBSSH2_HAVE_ZLIB
* Fri Apr 27 2012 Paul Howarth 1.4.1-2- Fix multi-arch conflict again (#816969)
* Thu Apr 05 2012 Paul Howarth 1.4.1-1- Update to 1.4.1 - Build error with gcrypt backend - Always do \"forced\" window updates to avoid corner case stalls - aes: the init function fails when OpenSSL has AES support - transport_send: finish in-progress key exchange before sending data - channel_write: acknowledge transport errors - examples/x11.c: make sure sizeof passed to read operation is correct - examples/x11.c: fix suspicious sizeof usage - sftp_packet_add: verify the packet before accepting it - SFTP: preserve the original error code more - sftp_packet_read: adjust window size as necessary - Use safer snprintf rather then sprintf in several places - Define and use LIBSSH2_INVALID_SOCKET instead of INVALID_SOCKET - sftp_write: cannot return acked data
*and
* EAGAIN - sftp_read: avoid data
*and
* EAGAIN - libssh2.h: add missing prototype for libssh2_session_banner_set()- Drop upstream patches now included in release tarball
* Mon Mar 19 2012 Kamil Dudka 1.4.0-4- Don\'t ignore transport errors when writing to channel (#804150)
* Sun Mar 18 2012 Paul Howarth 1.4.0-3- Don\'t try to use openssl\'s AES-CTR functions (http://www.libssh2.org/mail/libssh2-devel-archive-2012-03/0111.shtml)
* Fri Mar 16 2012 Paul Howarth 1.4.0-2- fix libssh2 failing key re-exchange when write channel is saturated (#804156)- drop %defattr, redundant since rpm 4.4
* Wed Feb 01 2012 Paul Howarth 1.4.0-1- update to 1.4.0 - added libssh2_session_supported_algs() - added libssh2_session_banner_get() - added libssh2_sftp_get_channel() - libssh2.h: bump the default window size to 256K - sftp-seek: clear EOF flag - userauth: provide more informations if ssh pub key extraction fails - ssh2_exec: skip error outputs for EAGAIN - LIBSSH2_SFTP_PACKET_MAXLEN: increase to 80000 - knownhost_check(): don\'t dereference ext if NULL is passed - knownhost_add: avoid dereferencing uninitialized memory on error path - OpenSSL EVP: fix threaded use of structs - _libssh2_channel_read: react on errors from receive_window_adjust - sftp_read: cap the read ahead maximum amount - _libssh2_channel_read: fix non-blocking window adjusting- add upstream patch fixing undefined function reference in libgcrypt backend- BR: /usr/bin/man for test suite
* Sun Jan 15 2012 Peter Robinson 1.3.0-4- skip the ssh test on ARM too
* Fri Jan 13 2012 Paul Howarth 1.3.0-3- make docs package noarch where possible- example includes arch-specific bits, so move to devel package- use patch rather than scripted iconv to fix character encoding- don\'t make assumptions about SELinux context types used for the ssh server in the test suite- skip the ssh test if /dev/tty isn\'t present, as in some versions of mock- make the %files list more explicit- use tabs for indentation
* Fri Jan 13 2012 Fedora Release Engineering 1.3.0-2- rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Thu Sep 08 2011 Kamil Dudka 1.3.0-1- update to 1.3.0
* Sat Jun 25 2011 Dennis Gilmore 1.2.7-2- sshd/loopback test fails in the sparc buildsystem
* Tue Oct 12 2010 Kamil Dudka 1.2.7-1- update to 1.2.7 (#632916)- avoid multilib conflict on libssh2-docs- avoid build failure in mock with SELinux in the enforcing mode (#558964)
* Fri Mar 12 2010 Chris Weyl 1.2.4-1- update to 1.2.4- drop old patch0- be more aggressive about keeping .deps from intruding into -docs
* Wed Jan 20 2010 Chris Weyl 1.2.2-5- pkgconfig dep should be with -devel, not -docs
* Mon Jan 18 2010 Chris Weyl 1.2.2-4- enable tests; conditionalize sshd test, which fails with a funky SElinux error when run locally
* Mon Jan 18 2010 Chris Weyl 1.2.2-3- patch w/1aba38cd7d2658146675ce1737e5090f879f306; not yet in a GA release
* Thu Jan 14 2010 Chris Weyl 1.2.2-2- correct bad file entry under -devel
* Thu Jan 14 2010 Chris Weyl 1.2.2-1- update to 1.2.2- drop old patch now in upstream- add new pkgconfig file to -devel
* Mon Sep 21 2009 Chris Weyl 1.2-2- patch based on 683aa0f6b52fb1014873c961709102b5006372fc- disable tests (
*sigh
*)
* Tue Aug 25 2009 Chris Weyl 1.2-1- update to 1.2
* Fri Aug 21 2009 Tomas Mraz - 1.0-4- rebuilt with new openssl
* Sat Jul 25 2009 Fedora Release Engineering - 1.0-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Wed Feb 25 2009 Fedora Release Engineering - 1.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Mon Feb 16 2009 Chris Weyl 1.0-1- update to 1.0
* Sat Jan 17 2009 Tomas Mraz - 0.18-8- rebuild with new openssl
* Mon Feb 18 2008 Fedora Release Engineering - 0.18-7- Autorebuild for GCC 4.3
* Wed Dec 05 2007 Chris Weyl 0.18-6- rebuild for new openssl...
* Tue Nov 27 2007 Chris Weyl 0.18-5- bump
* Tue Nov 27 2007 Chris Weyl 0.18-4- add INSTALL arg to make install vs env. var
* Mon Nov 26 2007 Chris Weyl 0.18-3- run tests; don\'t package test
* Sun Nov 18 2007 Chris Weyl 0.18-2- split docs into -docs (they seemed... large.)
* Tue Nov 13 2007 Chris Weyl 0.18-1- update to 0.18
* Sun Oct 14 2007 Chris Weyl 0.17-1- update to 0.17- many spec file changes
* Wed May 23 2007 Sindre Pedersen Bjørdal - 0.15-0.2.20070506- Fix release tag- Move manpages to -devel package- Add Examples dir to -devel package
* Sun May 06 2007 Sindre Pedersen Bjørdal - 0.15-0.20070506.1- Initial build