Commits · libssh-0.10.6 · Catena cyber / libssh-mirror · GitLab

Dec 18, 2023
- Bump version to 0.10.6 · 10e09e27
  Jakub Jelen authored Dec 15, 2023 and Andreas Schneider committed Dec 18, 2023
  View commits for tag libssh-0.10.6 libssh-0.10.6
  
  10e09e27
- CVE-2023-6918: tests: Code coverage for ssh_get_pubkey_hash() · 62242101
  Jakub Jelen authored Dec 15, 2023 and Andreas Schneider committed Dec 18, 2023
  62242101
- CVE-2023-6918: kdf: Detect context init failures · 8977e246
  Jakub Jelen authored Dec 15, 2023 and Andreas Schneider committed Dec 18, 2023
  8977e246
- CVE-2023-6918: Systematically check return values when calculating digests · 8b66d037
  Jakub Jelen authored Dec 15, 2023 and Andreas Schneider committed Dec 18, 2023
  8b66d037
- CVE-2023-6918: Remove unused evp functions and types · 63ff2421
  Jakub Jelen authored Dec 15, 2023 and Andreas Schneider committed Dec 18, 2023
  63ff2421
- CVE-2023-6918: kdf: Reformat · 610d7a09
  Jakub Jelen authored Dec 15, 2023 and Andreas Schneider committed Dec 18, 2023
  610d7a09
- CVE-2023-48795: tests: Adjust calculation to strict kex · 89df7592
  Jakub Jelen authored Dec 14, 2023 and Andreas Schneider committed Dec 18, 2023
  89df7592
- CVE-2023-48795: Strip extensions from both kex lists for matching · 5846e575
  Jakub Jelen authored Dec 14, 2023 and Andreas Schneider committed Dec 18, 2023
  5846e575
- CVE-2023-48795: Server side mitigations · 0870c8db
  Aris Adamantiadis authored Dec 12, 2023 and Andreas Schneider committed Dec 18, 2023
  0870c8db
- CVE-2023-48795: client side mitigation · 4cef5e96
  Aris Adamantiadis authored Dec 12, 2023 and Andreas Schneider committed Dec 18, 2023
  4cef5e96
- CVE-2023-6004: torture_misc: Add tests for ipv6 link-local · 2c492ee1
  Norbert Pocs authored Nov 28, 2023 and Andreas Schneider committed Dec 18, 2023
  2c492ee1
- CVE-2023-6004 misc: Add ipv6 link-local check for an ip address · cea841d7
  Norbert Pocs authored Nov 28, 2023 and Andreas Schneider committed Dec 18, 2023
  cea841d7
- CVE-2023-6004: torture_misc: Add test for ssh_is_ipaddr · 62d3101c
  Norbert Pocs authored Nov 06, 2023 and Andreas Schneider committed Dec 18, 2023
  62d3101c
- CVE-2023-6004: torture_proxycommand: Add test for proxycommand injection · d7467498
  Norbert Pocs authored Oct 10, 2023 and Andreas Schneider committed Dec 18, 2023
  d7467498
- CVE-2023-6004: config_parser: Check for valid syntax of a hostname if it is a domain name · 22492b69
  Norbert Pocs authored Oct 10, 2023 and Andreas Schneider committed Dec 18, 2023
  22492b69
- CVE-2023-6004: torture_misc: Add test for ssh_check_hostname_syntax · 9bbb817c
  Norbert Pocs authored Oct 10, 2023 and Andreas Schneider committed Dec 18, 2023
  9bbb817c
- CVE-2023-6004: misc: Add function to check allowed characters of a hostname · c6180409
  Norbert Pocs authored Oct 10, 2023 and Andreas Schneider committed Dec 18, 2023
  c6180409
- CVE-2023-6004: options: Simplify the hostname parsing in ssh_options_set · 8615c246
  Norbert Pocs authored Oct 31, 2023 and Andreas Schneider committed Dec 18, 2023
  8615c246
- CVE-2023-6004: config_parser: Allow multiple '@' in usernames · a66b4a6e
  Norbert Pocs authored Nov 01, 2023 and Andreas Schneider committed Dec 18, 2023
  a66b4a6e
- CVE-2023-6004: torture_config: Allow multiple '@' in usernames · c2c56bac
  Norbert Pocs authored Nov 05, 2023 and Andreas Schneider committed Dec 18, 2023
  c2c56bac
- poll: Avoid passing other events to callbacks when called recursively · 52ebecf8
  Jakub Jelen authored Aug 04, 2023 and Andreas Schneider committed Dec 18, 2023
  52ebecf8
- poll: Drop all events except POLLOUT when called recursively · 4b935d07
  Jakub Jelen authored Jul 04, 2023 and Andreas Schneider committed Dec 18, 2023
  4b935d07
- ci: Output errors for 'fedora/ninja' too. · 57b92b18
  Simon Josefsson authored Aug 07, 2023 and Andreas Schneider committed Dec 18, 2023
  57b92b18
- doc: Update IETF links. · 48f21717
  Simon Josefsson authored Aug 20, 2023 and Andreas Schneider committed Dec 18, 2023
  48f21717
- channels: Avoid out-of-bounds writes · e8474e1b
  Jakub Jelen authored Jun 28, 2023 and Andreas Schneider committed Dec 18, 2023
  e8474e1b
- session: Avoid potential null dereference on low-memory conditions · 85ce922b
  Jakub Jelen authored Jun 28, 2023 and Andreas Schneider committed Dec 18, 2023
  85ce922b
- Fix ssh_send_issue_banner() for CMD(PowerShell) · 49ead8f0
  Seung Min Park authored Oct 27, 2022 and Andreas Schneider committed Dec 18, 2023
  49ead8f0
May 15, 2023
- replace chroot() from chroot_wrapper internal library with chroot() from priv_wrapper package · 0813b757
  Pavel Filipenský authored Sep 15, 2022 and Jakub Jelen committed May 15, 2023
  0813b757
- tests/pkd: use -L in CMakeLists.txt · 29ad26db
  Jon Simons authored Nov 12, 2022 and Jakub Jelen committed May 15, 2023
  29ad26db
- tests/pkd: support -L, --temp-dir=<mkdtemp-template> · cd2bf21f
  Jon Simons authored Nov 12, 2022 and Jakub Jelen committed May 15, 2023
  cd2bf21f
- tests/pkd: relax pthread_kill assert in `pkd_stop` · ed8b7ea7
  Jon Simons authored Nov 12, 2022 and Jakub Jelen committed May 15, 2023
  ed8b7ea7
- tests/pkd: free socket wrapper string upon error · 105835d5
  Jon Simons authored Nov 06, 2022 and Jakub Jelen committed May 15, 2023
  105835d5
May 04, 2023
- Bump version to 0.10.5 · 479eca13
  Jakub Jelen authored Mar 20, 2023 and Andreas Schneider committed May 04, 2023
  View commits for tag libssh-0.10.5 libssh-0.10.5
  
  479eca13
- torture_options: Add tests for incorrect number parsing options · 994acfe2
  Norbert Pocs authored May 02, 2023 and Andreas Schneider committed May 04, 2023
  994acfe2
- options: Fail if no number was parsed · 968e09aa
  Norbert Pocs authored May 02, 2023 and Andreas Schneider committed May 04, 2023
  968e09aa
- buffer.c: Fix null pointer dereference error · a006d343
  Norbert Pocs authored May 02, 2023 and Andreas Schneider committed May 04, 2023
  a006d343
- Add missing return value check · a6694082
  Norbert Pocs authored May 02, 2023 and Andreas Schneider committed May 04, 2023
  a6694082
- CVE-2023-2283:pki_crypto: Remove unnecessary NULL check · c68a5857
  Norbert Pocs authored Apr 24, 2023 and Andreas Schneider committed May 04, 2023
  c68a5857
- CVE-2023-2283:pki_crypto: Fix possible authentication bypass · e8dfbb85
  Norbert Pocs authored Apr 24, 2023 and Andreas Schneider committed May 04, 2023
  e8dfbb85
- CVE-2023-1667:tests: Send a bit more to make sure rekey is completed · dc1254d5
  Jakub Jelen authored Apr 17, 2023 and Andreas Schneider committed May 04, 2023
  dc1254d5