: Log in!

メインメニュー
Google


ウェブ 検索
サイト内検索
トップ  >  Linux11歩  >  2011-05-04 opensshのupdate
20110504 openssh-5.8p2にupdateしました


内容

・version.hを自分で修正しています SSH_PORTABLE番号 (p1 → p2)

/* $OpenBSD: version.h,v 1.61 2011/02/04 00:44:43 djm Exp $ */

#define SSH_VERSION	"OpenSSH_5.8"

#define SSH_PORTABLE	"p2"
#define SSH_RELEASE	SSH_VERSION SSH_PORTABLE

ChangeLog

Changes since OpenSSH 5.8p1
===========================

Security:

* Fix local private host key compromise on platforms without host-
  level randomness support (e.g. /dev/random) reported by Tomas Mraz

  On hosts that did not have a randomness source configured in
  OpenSSL and were not configured to use EGD/PRNGd (using the
  --with-prngd-socket configure option), the ssh-rand-helper command
  was being implicitly executed by ssh-keysign with open file
  descriptors to the host private keys. An attacker could use
  ptrace(2) to attach to ssh-rand-helper and exfiltrate the keys.

  Most modern operating systems are not vulnerable. In particular,
  *BSD, Linux, OS X and Cygwin do not use ssh-rand-helper.

Portable OpenSSH Bugfixes:

* Fix compilation failure when enabling SELinux support.

* Revised Cygwin ssh-{host,user}-config that include ECDSA key
  support.

* Revised Cygwin ssh-host-config to be more thorough in error checking
  and reporting.
投票数:55 平均点:4.36
前
2011-04-25 phpの修正
カテゴリートップ
Linux11歩
次
2011-05-07 bind,mysqlのupdate