[openssh-commits] [openssh] branch master updated (bda270d7 -> 4265215d)

git+noreply at mindrot.org git+noreply at mindrot.org
Sun Jun 6 13:41:48 AEST 2021


This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  bda270d7  upstream: degrade gracefully if a sftp-server offers the
       new  4265215d  upstream: Client-side workaround for a bug in OpenSSH 7.4: this release

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit 4265215d7300901fd7097061c7517688ade82f8e
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sun Jun 6 03:40:39 2021 +0000

    upstream: Client-side workaround for a bug in OpenSSH 7.4: this release
    
    allows RSA/SHA2 signatures for public key authentication but fails to
    advertise this correctly via SSH2_MSG_EXT_INFO. This causes clients of these
    server to incorrectly match PubkeyAcceptedAlgorithms and potentially refuse
    to offer valid keys.
    
    Reported by and based on patch from Gordon Messmer via bz3213, thanks
    also for additional analysis by Jakub Jelen. ok dtucker
    
    OpenBSD-Commit-ID: d6d0b7351d5d44c45f3daaa26efac65847a564f7

Summary of changes:
 compat.c      |  4 +++-
 compat.h      |  4 ++--
 sshconnect2.c | 13 +++++++++++--
 3 files changed, 16 insertions(+), 5 deletions(-)

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.


More information about the openssh-commits mailing list