Diffusion FreeBSD src repository - subversion rS311913

Apply upstream fix for CVE-2016-10009 and CVE-2016-10010:
rS311913
Actions

Description

Apply upstream fix for CVE-2016-10009 and CVE-2016-10010:

add a whitelist of paths from which ssh-agent will load (via
ssh-pkcs11-helper) a PKCS#11 module; ok markus@

disable Unix-domain socket forwarding when privsep is disabled

(Note that this is a backport of upstream fixes, and this commit
is mainly to ease future imports).

Obtained from: OpenBSD

Details

Provenance

delphij

Authored on

Parents

rS311912: Force all TOC references in asm to include '@toc'

Branches

Unknown

Tags

Unknown

Event Timeline

delphij committed rS311913: Apply upstream fix for CVE-2016-10009 and CVE-2016-10010:.Jan 11 2017, 5:42 AM

Changes (3)

Path

Size

vendor-crypto/

openssh/

dist/

serverloop.c

ssh-agent.1

ssh-agent.c

rS311913

View Options

vendor-crypto/openssh/dist/serverloop.c

View Options

vendor-crypto/openssh/dist/ssh-agent.1

View Options

vendor-crypto/openssh/dist/ssh-agent.c

Apply upstream fix for CVE-2016-10009 and CVE-2016-10010:rS311913Actions

Description

Details

Event Timeline

Changes (3)

rS311913

vendor-crypto/openssh/dist/serverloop.c

vendor-crypto/openssh/dist/ssh-agent.1

vendor-crypto/openssh/dist/ssh-agent.c

Apply upstream fix for CVE-2016-10009 and CVE-2016-10010:
rS311913
Actions