libssh.git/src, branch v0-5 libssh shared repository security: fix for vulnerability CVE-2014-0017 2014-03-04T08:54:25+00:00 Aris Adamantiadis aris@0xbadc0de.be 2014-02-05T20:24:12+00:00 48f0bfc70363ca31c8889ca68759e587bc6d7cbd When accepting a new connection, a forking server based on libssh forks and the child process handles the request. The RAND_bytes() function of openssl doesn't reset its state after the fork, but simply adds the current process id (getpid) to the PRNG state, which is not guaranteed to be unique. This can cause several children to end up with same PRNG state which is a security issue. Conflicts: src/bind.c 
When accepting a new connection, a forking server based on libssh forks
and the child process handles the request. The RAND_bytes() function of
openssl doesn't reset its state after the fork, but simply adds the
current process id (getpid) to the PRNG state, which is not guaranteed
to be unique.
This can cause several children to end up with same PRNG state which is
a security issue.

Conflicts:
	src/bind.c
socket: Call data handler as long as handler takes data. 2013-10-06T15:48:40+00:00 Johannes Krude johannes@krude.de 2013-01-22T12:06:28+00:00 d7ab3d7b3ddf1c25d8286819b7d86ff0683ae444 Reviewed-by: Andreas Schneider <asn@cryptomilk.org> 
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
BUG 103: Disable proxy command if set to 'none'. 2013-07-26T06:42:26+00:00 Andreas Schneider asn@cryptomilk.org 2013-07-11T13:15:34+00:00 23e0053a419b38bda11bbabe3baba9681d7f8fa1 Signed-off-by: Andreas Schneider <asn@cryptomilk.org> 
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
client: Fix possible NULL pointer dereference. 2013-07-26T06:42:26+00:00 Andreas Schneider asn@cryptomilk.org 2013-06-13T09:46:17+00:00 b6788f369e5dadd2ead72f0a13225f6da0a48d39 






kex: Fix a double free.
2013-07-26T06:42:26+00:00

Andreas Schneider
asn@cryptomilk.org

2013-06-13T08:51:12+00:00

4cc42361826bd98a90fb779492ef9f7399ac569a












Check for NULL pointers in channels.c
2013-07-26T06:42:26+00:00

milo
milo@r0ot.me

2011-02-14T19:02:02+00:00

21a1c51eef522e927709641f1b0459062c2c7ae9












BUG 103: Fix ProxyCommand parsing.
2013-06-02T17:33:57+00:00

Andreas Schneider
asn@cryptomilk.org

2013-06-02T17:06:33+00:00

7ba381116d31a2293bf107d8c46cf0ec2fe444cc












config: Rename ssh_config_get_str().
2013-06-02T17:33:57+00:00

Andreas Schneider
asn@cryptomilk.org

2013-06-02T16:53:40+00:00

6f59c0534dec269c078847d5a84defd84603ab30












opts: Fix segfault in option parser.
2013-06-02T17:33:57+00:00

Andreas Schneider
asn@cryptomilk.org

2013-06-02T16:34:39+00:00

494fb26b01a387334ff3ac2a93cb6999e8609879












poll: return error on poll() when pollset is empty
2013-02-27T07:07:44+00:00

Aris Adamantiadis
aris@0xbadc0de.be

2013-02-11T20:35:50+00:00

5826cb6ab2415d8ddfd9ae7dd4b80ec53376e0f4

(cherry picked from commit 222a0d78ca5c272ea109e847d62cf12674dd875f)





(cherry picked from commit 222a0d78ca5c272ea109e847d62cf12674dd875f)