Hello community,
here is the log from the commit of package openssh
checked in at Wed Dec 13 01:26:17 CET 2006.
--------
--- openssh/openssh-askpass-gnome.changes 2006-10-04 12:58:22.000000000 +0200
+++ /mounts/work_src_done/STABLE/openssh/openssh-askpass-gnome.changes 2006-12-13 01:25:42.000000000 +0100
@@ -1,0 +2,15 @@
+Tue Dec 12 14:44:41 CET 2006 - anicka@suse.cz
+
+- update to 4.5p1
+ * Use privsep_pw if we have it, but only require it if we
+ absolutely need it.
+ * Correctly check for bad signatures in the monitor, otherwise
+ the monitor and the unpriv process can get out of sync.
+ * Clear errno before calling the strtol functions.
+ * exit instead of doing a blocking tcp send if we detect
+ a client/server timeout, since the tcp sendqueue might
+ be already full (of alive requests)
+ * include signal.h, errno.h, sys/in.h
+ * some more bugfixes
+
+-------------------------------------------------------------------
--- openssh/openssh.changes 2006-11-22 13:42:50.000000000 +0100
+++ /mounts/work_src_done/STABLE/openssh/openssh.changes 2006-12-12 14:44:00.000000000 +0100
@@ -1,0 +2,15 @@
+Tue Dec 12 14:41:45 CET 2006 - anicka@suse.cz
+
+- update to 4.5p1
+ * Use privsep_pw if we have it, but only require it if we
+ absolutely need it.
+ * Correctly check for bad signatures in the monitor, otherwise
+ the monitor and the unpriv process can get out of sync.
+ * Clear errno before calling the strtol functions.
+ * exit instead of doing a blocking tcp send if we detect
+ a client/server timeout, since the tcp sendqueue might
+ be already full (of alive requests)
+ * include signal.h, errno.h, sys/in.h
+ * some more bugfixes
+
+-------------------------------------------------------------------
Old:
----
openssh-4.4p1-addrlist.dif
openssh-4.4p1-askpass-fix.diff
openssh-4.4p1-blocksigalrm.diff
openssh-4.4p1-eal3.diff
openssh-4.4p1-engines.diff
openssh-4.4p1-gcc-fix.patch
openssh-4.4p1-gssapimitm.patch
openssh-4.4p1-pam-fix2.diff
openssh-4.4p1-pam-fix3.diff
openssh-4.4p1-pwname-home.diff
openssh-4.4p1-saveargv-fix.diff
openssh-4.4p1-secfix4.5.diff
openssh-4.4p1-send_locale.diff
openssh-4.4p1-strict-aliasing-fix.diff
openssh-4.4p1-tmpdir.diff
openssh-4.4p1-xauth.diff
openssh-4.4p1-xauthlocalhostname.diff
openssh-4.4p1.dif
openssh-4.4p1.tar.bz2
New:
----
openssh-4.5p1-addrlist.dif
openssh-4.5p1-askpass-fix.diff
openssh-4.5p1-blocksigalrm.diff
openssh-4.5p1-eal3.diff
openssh-4.5p1-engines.diff
openssh-4.5p1-gcc-fix.patch
openssh-4.5p1-gssapimitm.patch
openssh-4.5p1-pam-fix2.diff
openssh-4.5p1-pam-fix3.diff
openssh-4.5p1-pwname-home.diff
openssh-4.5p1-saveargv-fix.diff
openssh-4.5p1-send_locale.diff
openssh-4.5p1-strict-aliasing-fix.diff
openssh-4.5p1-tmpdir.diff
openssh-4.5p1-xauth.diff
openssh-4.5p1-xauthlocalhostname.diff
openssh-4.5p1.dif
openssh-4.5p1.tar.bz2
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ openssh-askpass-gnome.spec ++++++
--- /var/tmp/diff_new_pack.m4HXis/_old 2006-12-13 01:25:58.000000000 +0100
+++ /var/tmp/diff_new_pack.m4HXis/_new 2006-12-13 01:25:58.000000000 +0100
@@ -1,5 +1,5 @@
#
-# spec file for package openssh-askpass-gnome (Version 4.4p1)
+# spec file for package openssh-askpass-gnome (Version 4.5p1)
#
# Copyright (c) 2006 SUSE LINUX Products GmbH, Nuernberg, Germany.
# This file and all modifications and additions to the pristine
@@ -14,8 +14,8 @@
BuildRequires: gtk2-devel krb5-devel opensc-devel openssh openssl-devel pam-devel tcpd-devel update-desktop-files
License: Other License(s), see package
Group: Productivity/Networking/SSH
-Version: 4.4p1
-Release: 23
+Version: 4.5p1
+Release: 1
Requires: openssh = %{version} openssh-askpass = %{version}
Autoreqprov: on
Summary: A GNOME-Based Passphrase Dialog for OpenSSH
@@ -111,6 +111,18 @@
%attr(0755,root,root) /usr/%_lib/ssh/gnome-ssh-askpass
%changelog -n openssh-askpass-gnome
+* Tue Dec 12 2006 - anicka@suse.cz
+- update to 4.5p1
+ * Use privsep_pw if we have it, but only require it if we
+ absolutely need it.
+ * Correctly check for bad signatures in the monitor, otherwise
+ the monitor and the unpriv process can get out of sync.
+ * Clear errno before calling the strtol functions.
+ * exit instead of doing a blocking tcp send if we detect
+ a client/server timeout, since the tcp sendqueue might
+ be already full (of alive requests)
+ * include signal.h, errno.h, sys/in.h
+ * some more bugfixes
* Wed Oct 04 2006 - postadal@suse.cz
- updated to version 4.4p1 [#208662]
* fixed pre-authentication DoS, that would cause sshd(8) to spin
++++++ openssh.spec ++++++
--- /var/tmp/diff_new_pack.m4HXis/_old 2006-12-13 01:25:58.000000000 +0100
+++ /var/tmp/diff_new_pack.m4HXis/_new 2006-12-13 01:25:58.000000000 +0100
@@ -1,5 +1,5 @@
#
-# spec file for package openssh (Version 4.4p1)
+# spec file for package openssh (Version 4.5p1)
#
# Copyright (c) 2006 SUSE LINUX Products GmbH, Nuernberg, Germany.
# This file and all modifications and additions to the pristine
@@ -27,8 +27,8 @@
PreReq: /usr/sbin/groupadd /usr/sbin/useradd %insserv_prereq %fillup_prereq /bin/mkdir /bin/cat permissions
Conflicts: nonfreessh
Autoreqprov: on
-Version: 4.4p1
-Release: 22
+Version: 4.5p1
+Release: 1
%define xversion 1.2.4.1
Summary: Secure Shell Client and Server (Remote Login Program)
URL: http://www.openssh.com/
@@ -59,7 +59,6 @@
Patch40: %{name}-%{version}-xauth.diff
Patch41: %{name}-%{version}-gcc-fix.patch
Patch42: %{name}-gssapi_krb5-fix.patch
-Patch43: %{name}-%{version}-secfix4.5.diff
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%package askpass
Summary: A passphrase dialog for OpenSSH and the X Window System
@@ -146,7 +145,6 @@
%patch40
%patch41
%patch42
-%patch43
cp -v %{SOURCE4} .
cp -v %{SOURCE6} .
cd ../x11-ssh-askpass-%{xversion}
@@ -284,6 +282,18 @@
%config %_appdefdir/SshAskpass
%changelog -n openssh
+* Tue Dec 12 2006 - anicka@suse.cz
+- update to 4.5p1
+ * Use privsep_pw if we have it, but only require it if we
+ absolutely need it.
+ * Correctly check for bad signatures in the monitor, otherwise
+ the monitor and the unpriv process can get out of sync.
+ * Clear errno before calling the strtol functions.
+ * exit instead of doing a blocking tcp send if we detect
+ a client/server timeout, since the tcp sendqueue might
+ be already full (of alive requests)
+ * include signal.h, errno.h, sys/in.h
+ * some more bugfixes
* Wed Nov 22 2006 - anicka@suse.cz
- fixed README.SuSE [#223025]
* Thu Nov 09 2006 - anicka@suse.cz
++++++ openssh-4.4p1-addrlist.dif -> openssh-4.5p1-addrlist.dif ++++++
++++++ openssh-4.4p1-askpass-fix.diff -> openssh-4.5p1-askpass-fix.diff ++++++
++++++ openssh-4.4p1-blocksigalrm.diff -> openssh-4.5p1-blocksigalrm.diff ++++++
++++++ openssh-4.4p1-eal3.diff -> openssh-4.5p1-eal3.diff ++++++
--- openssh/openssh-4.4p1-eal3.diff 2006-11-09 13:57:59.000000000 +0100
+++ /mounts/work_src_done/STABLE/openssh/openssh-4.5p1-eal3.diff 2006-12-12 13:56:43.000000000 +0100
@@ -1,5 +1,5 @@
---- openssh-4.4p1/sshd.8
-+++ openssh-4.4p1/sshd.8
+--- openssh-4.5p1/sshd.8
++++ openssh-4.5p1/sshd.8
@@ -739,7 +739,7 @@
The file format is described in
.Xr moduli 5 .
@@ -28,8 +28,8 @@
.Xr sshd_config 5 ,
.Xr inetd 8 ,
.Xr sftp-server 8
---- openssh-4.4p1/sshd_config.5
-+++ openssh-4.4p1/sshd_config.5
+--- openssh-4.5p1/sshd_config.5
++++ openssh-4.5p1/sshd_config.5
@@ -169,9 +169,6 @@
By default, no banner is displayed.
.It Cm ChallengeResponseAuthentication
++++++ openssh-4.4p1-engines.diff -> openssh-4.5p1-engines.diff ++++++
--- openssh/openssh-4.4p1-engines.diff 2006-11-09 13:57:59.000000000 +0100
+++ /mounts/work_src_done/STABLE/openssh/openssh-4.5p1-engines.diff 2006-12-12 13:56:43.000000000 +0100
@@ -2,8 +2,8 @@
# -- mludvig@suse.cz
Index: openssh-3.8p1/ssh-add.c
================================================================================
---- openssh-4.4p1/ssh-add.c
-+++ openssh-4.4p1/ssh-add.c
+--- openssh-4.5p1/ssh-add.c
++++ openssh-4.5p1/ssh-add.c
@@ -42,6 +42,7 @@
#include