[Bug 2566] 2 integer overflows in function ssh_packet_send2_wrapped()

2016-05-03 Thread bugzilla-daemon 
https://bugzilla.mindrot.org/show_bug.cgi?id=2566

Damien Miller  changed:

   What|Removed |Added

 Status|NEW |ASSIGNED
   Assignee|unassigned-b...@mindrot.org |d...@mindrot.org
 CC||d...@mindrot.org

--- Comment #1 from Damien Miller  ---
Created attachment 2813
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2813=edit
check padding calculations

Hi,

Thanks for the report. I think we can avoid these by promoting the
padding calculation variables' types from u_char to u_int and dropping
in a few checks. This patch implements this.

It's currently cranking through our regression tests...

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
___
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 2543] Tracking bug for OpenSSH 7.3 release

2016-05-03 Thread bugzilla-daemon 
https://bugzilla.mindrot.org/show_bug.cgi?id=2543

Darren Tucker  changed:

   What|Removed |Added

 Depends on||2477


Referenced Bugs:

https://bugzilla.mindrot.org/show_bug.cgi?id=2477
[Bug 2477] backspace in interactive session does not delete multi-byte
Unicode characters correctly
-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching the reporter of the bug.
___
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 2477] backspace in interactive session does not delete multi-byte Unicode characters correctly

2016-05-03 Thread bugzilla-daemon 
https://bugzilla.mindrot.org/show_bug.cgi?id=2477

Darren Tucker  changed:

   What|Removed |Added

 Resolution|--- |FIXED
 Status|NEW |RESOLVED

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
___
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 2477] backspace in interactive session does not delete multi-byte Unicode characters correctly

2016-05-03 Thread bugzilla-daemon 
https://bugzilla.mindrot.org/show_bug.cgi?id=2477

--- Comment #5 from Darren Tucker  ---
Simon Tatham has submitted an internet-draft for this:
http://www.ietf.org/id/draft-sgtatham-secsh-iutf8-00.txt

and it's currently implemented in the development branches of OpenSSH
and PuTTY.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
___
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 2319] [PATCH REVIEW] U2F authentication

2016-05-03 Thread bugzilla-daemon 
https://bugzilla.mindrot.org/show_bug.cgi?id=2319

Vincent Brillault  changed:

   What|Removed |Added

 CC||g...@lerya.net

--- Comment #20 from Vincent Brillault  ---
Compilation fails for me when kerberos support is enabled due to:

In file included from auth-u2f.c:48:
./monitor_wrap.h:64:1: error: unknown type name 'OM_uint32'
OM_uint32 mm_ssh_gssapi_server_ctx(Gssctxt **, gss_OID);

(And several other similar errors).

Quick fix on my side to get it to compile: add '''#include
"ssh-gss.h"'''.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
___
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs