[SECURITY] Fedora Core 5 Test Update: openssh-4.3p2-4.12.fc5
Miloslav Trmac
mitr at redhat.com
Sat Mar 31 14:40:41 UTC 2007
---------------------------------------------------------------------
Fedora Test Update Notification
FEDORA-2007-395
2007-03-31
---------------------------------------------------------------------
Product : Fedora Core 5
Name : openssh
Version : 4.3p2
Release : 4.12.fc5
Summary : The OpenSSH implementation of SSH protocol versions 1 and 2
Description :
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine. SSH is intended to replace rlogin and
rsh, and to provide secure encrypted communications between two
untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.
OpenSSH is OpenBSD's version of the last free version of SSH, bringing
it up to date in terms of security and features, as well as removing
all patented algorithms to separate libraries.
This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both.
---------------------------------------------------------------------
Update Information:
If no new regressions are reported, this update will be
pushed final on Apr 3.
---------------------------------------------------------------------
* Fri Mar 30 2007 Miloslav Trmac <mitr at redhat.com> - 4.3p2-4.12
- Fix an information leak in Kerberos password authentication (CVE-2006-5052)
Resolves: #234640
* Fri Nov 10 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-4.11
- CVE-2006-5794 - properly detect failed key verify in monitor (#214641)
- kill all ssh sessions when stop is called in halt or reboot runlevel (#213008)
- remove -TERM option from killproc so we don't race on sshd restart (#213490)
* Mon Oct 2 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-4.10
- improve gssapi-no-spnego patch (#208102)
- CVE-2006-4924 - prevent DoS on deattack detector (#207957)
- CVE-2006-5051 - don't call cleanups from signal handler (#208459)
* Wed Sep 13 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-4.1
- sync with FC6 version
- build for FC5
* Wed Aug 23 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-9
- don't report duplicate syslog messages, use correct local time (#189158)
- don't allow spnego as gssapi mechanism (from upstream)
- fixed memleaks found by Coverity (from upstream)
- allow ip options except source routing (#202856) (patch by HP)
* Tue Aug 8 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-8
- drop the pam-session patch from the previous build (#201341)
- don't set IPV6_V6ONLY sock opt when listening on wildcard addr (#201594)
* Thu Jul 20 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-7
- dropped old ssh obsoletes
- call the pam_session_open/close from the monitor when privsep is
enabled so it is always called as root (patch by Darren Tucker)
* Mon Jul 17 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-6
- improve selinux patch (by Jan Kiszka)
- upstream patch for buffer append space error (#191940)
- fixed typo in configure.ac (#198986)
- added pam_keyinit to pam configuration (#198628)
- improved error message when askpass dialog cannot grab
keyboard input (#198332)
- buildrequires xauth instead of xorg-x11-xauth
- fixed a few rpmlint warnings
* Wed Jul 12 2006 Jesse Keating <jkeating at redhat.com> - 4.3p2-5.1
- rebuild
* Fri Apr 14 2006 Tomas Mraz <tmraz at redhat.com> - 4.3p2-5
- don't request pseudoterminal allocation if stdin is not tty (#188983)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/5/
43a8bffd305346aba34e27a4e5e1c57027da0ff6 SRPMS/openssh-4.3p2-4.12.fc5.src.rpm
43a8bffd305346aba34e27a4e5e1c57027da0ff6 noarch/openssh-4.3p2-4.12.fc5.src.rpm
9e2b4f264c31161951fb4ea8d8625ff0480339b8 ppc/openssh-4.3p2-4.12.fc5.ppc.rpm
1c31d57dd716384e597b1072507c01a03dd4c2fe ppc/debug/openssh-debuginfo-4.3p2-4.12.fc5.ppc.rpm
eeb3c5a2678613746060d9981e2e10785cb4599f ppc/openssh-clients-4.3p2-4.12.fc5.ppc.rpm
b97168b141ce9097c25cac4946aa6363c2d73109 ppc/openssh-askpass-4.3p2-4.12.fc5.ppc.rpm
8046c6dd8185a97bcd17a4d2405ccc9ff6e892fb ppc/openssh-server-4.3p2-4.12.fc5.ppc.rpm
e4a166cf7446a71251132ea667f54400badff2a6 x86_64/openssh-4.3p2-4.12.fc5.x86_64.rpm
2f0fdef9b594eff17aa723830c505061efa28483 x86_64/openssh-server-4.3p2-4.12.fc5.x86_64.rpm
0ddbf75c5c438c74421c836c707297453634082a x86_64/openssh-clients-4.3p2-4.12.fc5.x86_64.rpm
a956030c54eecf2620c503df9fe25b8848180836 x86_64/openssh-askpass-4.3p2-4.12.fc5.x86_64.rpm
591e7c5b6b0be068e642c22679444f8a3e8b5649 x86_64/debug/openssh-debuginfo-4.3p2-4.12.fc5.x86_64.rpm
2d7361a14d45875f2b87655c26fd0d728f2f047b i386/openssh-server-4.3p2-4.12.fc5.i386.rpm
0df75da99ec24ea854166a02d2cdaaf3e56d116f i386/openssh-askpass-4.3p2-4.12.fc5.i386.rpm
6faf2a5087d4b7d85340f467bd037d72b8258fd7 i386/openssh-clients-4.3p2-4.12.fc5.i386.rpm
b6e4b1ff86bb9f7a00d5feaa24d01d6f4467d61a i386/debug/openssh-debuginfo-4.3p2-4.12.fc5.i386.rpm
7e43f07e81d4d955edba0617da381b95ea24e2c7 i386/openssh-4.3p2-4.12.fc5.i386.rpm
This update can be installed with the 'yum' update program. Use 'yum update
package-name' at the command line. For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------
More information about the test
mailing list