[blfs-book] r21229 - in trunk/BOOK: gnome/applications introduction/welcome postlfs/security

Fri, 22 Feb 2019 06:17:05 -0800 

Author: renodr
Date: Fri Feb 22 06:15:58 2019
New Revision: 21229

Log:
Add security patch to OpenSSH to fix an access restriction bypass vulnerability.

Modified:
   trunk/BOOK/gnome/applications/gucharmap.xml
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/postlfs/security/openssh.xml

Modified: trunk/BOOK/gnome/applications/gucharmap.xml
==============================================================================
--- trunk/BOOK/gnome/applications/gucharmap.xml Fri Feb 22 05:51:09 2019        
(r21228)
+++ trunk/BOOK/gnome/applications/gucharmap.xml Fri Feb 22 06:15:58 2019        
(r21229)
@@ -39,7 +39,7 @@
       only know by its Unicode name or code point.
     </para>
 
-    &lfs83_checked;
+    &lfs84_checked;
 
     <bridgehead renderas="sect3">Package Information</bridgehead>
     <itemizedlist spacing="compact">

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==============================================================================
--- trunk/BOOK/introduction/welcome/changelog.xml       Fri Feb 22 05:51:09 
2019        (r21228)
+++ trunk/BOOK/introduction/welcome/changelog.xml       Fri Feb 22 06:15:58 
2019        (r21229)
@@ -45,6 +45,12 @@
       <para>February 22nd, 2019</para>
       <itemizedlist>
         <listitem>
+          <para>[renodr] - Add a security patch for OpenSSH to fix an 
+          access restriction bypass vulnerability caused by using "." or a
+          blank filename when using SCP. Fixes
+          <ulink url="&blfs-ticket-root;11693">#11693</ulink>.</para>
+        </listitem>
+        <listitem>
           <para>[renodr] - Update the security patch for polkit-0.115
           to include a fix for another authentication bypass. Fixes
           <ulink url="&blfs-ticket-root;11692">#11692</ulink>.</para>

Modified: trunk/BOOK/postlfs/security/openssh.xml
==============================================================================
--- trunk/BOOK/postlfs/security/openssh.xml     Fri Feb 22 05:51:09 2019        
(r21228)
+++ trunk/BOOK/postlfs/security/openssh.xml     Fri Feb 22 06:15:58 2019        
(r21229)
@@ -77,14 +77,14 @@
         </para>
       </listitem>
     </itemizedlist>
-<!--
+
     <bridgehead renderas="sect3">Additional Downloads</bridgehead>
     <itemizedlist spacing="compact">
       <listitem>
-        <para>Required patch: <ulink 
url="&patch-root;/openssh-&openssh-version;-openssl-1.1.0-1.patch"/></para>
+        <para>Required patch: <ulink 
url="&patch-root;/openssh-&openssh-version;-security_fix-1.patch"/></para>
       </listitem>
     </itemizedlist>
--->
+
     <bridgehead renderas="sect3">OpenSSH Dependencies</bridgehead>
 <!--
     <bridgehead renderas="sect4">Required</bridgehead>
@@ -143,7 +143,8 @@
       commands:
     </para>
 
-<screen><userinput>./configure --prefix=/usr                     \
+<screen><userinput>patch -Np1 -i ../openssh-7.9p1-security_fix-1.patch 
&amp;&amp;
+./configure --prefix=/usr                     \
             --sysconfdir=/etc/ssh             \
             --with-md5-passwords              \
             --with-privsep-path=/var/lib/sshd &amp;&amp;
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to