Hello community, here is the log from the commit of package dropbear for openSUSE:Factory checked in at 2015-08-21 07:41:43 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/dropbear (Old) and /work/SRC/openSUSE:Factory/.dropbear.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "dropbear" Changes: -------- --- /work/SRC/openSUSE:Factory/dropbear/dropbear.changes 2015-02-06 10:23:30.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.dropbear.new/dropbear.changes 2015-08-21 07:42:16.000000000 +0200 @@ -1,0 +2,36 @@ +Mon Aug 10 08:13:56 UTC 2015 - [email protected] + +- updated to upstream version 2015.68 + * Reduce local data copying for improved efficiency. Measured 30% + increase in throughput for connections to localhost + * Forwarded TCP ports connect asynchronously and try all available addresses + (IPv4, IPv6, round robin DNS) + * Fix all compile warnings, many patches from Gaƫl Portay + Note that configure with -Werror may not be successful on some platforms (OS X) + and some configuration options may still result in unused variable + warnings. + * Use TCP Fast Open on Linux if available. Saves a round trip at connection + to hosts that have previously been connected. + Needs a recent Linux kernel and possibly "sysctl -w net.ipv4.tcp_fastopen=3" + Client side is disabled by default pending further compatibility testing + with networks and systems. + * Increase maximum command length to 9000 bytes + * Free memory before exiting, patch from Thorsten Horstmann. Useful for + Dropbear ports to embedded systems and for checking memory leaks + with valgrind. Only partially implemented for dbclient. + This is disabled by default, enable with DROPBEAR_CLEANUP in sysoptions.h + * DROPBEAR_DEFAULT_CLI_AUTHKEY setting now always prepends home directory unless + there is a leading slash (~ isn't treated specially) + * Fix small ECC memory leaks + * Tighten validation of Diffie-Hellman parameters, from Florent Daigniere of + Matta Consulting. Odds of bad values are around 2**-512 -- improbable. + * Twofish-ctr cipher is supported though disabled by default + * Fix pre-authentication timeout when waiting for client SSH-2.0 banner, thanks + to CL Ouyang + * Fix null pointer crash with restrictions in authorized_keys without a command, patch from + Guilhem Moulin + * Ensure authentication timeout is handled while reading the initial banner, + thanks to CL Ouyang for finding it. + * Fix null pointer crash when handling bad ECC keys. Found by afl-fuzz + +------------------------------------------------------------------- Old: ---- dropbear-2015.67.tar.bz2 dropbear-2015.67.tar.bz2.asc dropbear.keyring New: ---- dropbear-2015.68.tar.bz2 dropbear-2015.68.tar.bz2.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ dropbear.spec ++++++ --- /var/tmp/diff_new_pack.VkX9Kr/_old 2015-08-21 07:42:17.000000000 +0200 +++ /var/tmp/diff_new_pack.VkX9Kr/_new 2015-08-21 07:42:17.000000000 +0200 @@ -1,7 +1,7 @@ # # spec file for package dropbear # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -21,15 +21,14 @@ %endif Name: dropbear -Version: 2015.67 +Version: 2015.68 Release: 0 Summary: A relatively small SSH 2 server and client License: MIT Group: Productivity/Networking/SSH Url: http://matt.ucc.asn.au/dropbear/dropbear.html -Source0: http://matt.ucc.asn.au/dropbear/releases/%{name}-%{version}.tar.bz2 -Source1: https://matt.ucc.asn.au/dropbear/SHA256SUM.asc#/%{name}-%{version}.tar.bz2.asc -Source2: dropbear.keyring +Source0: https://matt.ucc.asn.au/dropbear/%{name}-%{version}.tar.bz2 +Source1: https://matt.ucc.asn.au/dropbear/%{name}-%{version}.tar.bz2.asc Source3: dropbear.service Source4: dropbear-keygen.service Source5: dropbear.sysconfig ++++++ dropbear-2015.67.tar.bz2 -> dropbear-2015.68.tar.bz2 ++++++ ++++ 5656 lines of diff (skipped)
