Hello community, here is the log from the commit of package libssh for openSUSE:Factory checked in at 2012-11-20 20:15:04 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libssh (Old) and /work/SRC/openSUSE:Factory/.libssh.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libssh", Maintainer is "[email protected]" Changes: -------- --- /work/SRC/openSUSE:Factory/libssh/libssh.changes 2012-02-10 17:17:27.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.libssh.new/libssh.changes 2012-11-20 20:15:09.000000000 +0100 @@ -1,0 +2,18 @@ +Tue Nov 20 13:40:42 UTC 2012 - [email protected] + +- Update to version 0.5.3 + * CVE-2012-4559 Fixed multiple double free() flaws. + * CVE-2012-4560 Fixed multiple buffer overflow flaws. + * CVE-2012-4561 Fixed multiple invalid free() flaws. + * rlo #84 - Fix bug in sftp_mkdir not returning on error. + * rlo #85 - Fixed a possible channel infinite loop if the connection dropped. + * rlo #88 - Added missing channel request_state and set it to accepted. + * rlo #89 - Reset error state to no error on successful SSHv1 authentiction. + * Fixed a possible use after free in ssh_free(). + * Fixed multiple possible NULL pointer dereferences. + * Fixed multiple memory leaks in error paths. + * Fixed timeout handling. + * Fixed regression in pre-connected socket setting. + * Handle all unknown global messages. + +------------------------------------------------------------------- Old: ---- libssh-0.5.2.tar.bz2 New: ---- libssh-0.5.3.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libssh.spec ++++++ --- /var/tmp/diff_new_pack.EyU1Zm/_old 2012-11-20 20:15:10.000000000 +0100 +++ /var/tmp/diff_new_pack.EyU1Zm/_new 2012-11-20 20:15:10.000000000 +0100 @@ -24,7 +24,7 @@ BuildRequires: gcc-c++ BuildRequires: openssl-devel BuildRequires: pkgconfig -Version: 0.5.2 +Version: 0.5.3 Release: 0 Summary: SSH library License: LGPL-2.1+ @@ -80,9 +80,7 @@ %prep %setup -q -%if "%{?sles_version}" == "11" %patch -P 1 -p1 -%endif %build if test ! -e "build"; then ++++++ libssh-0.5.2.tar.bz2 -> libssh-0.5.3.tar.bz2 ++++++ ++++ 4210 lines of diff (skipped) -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
