summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* pki: Fix switch statement of pki_key_generate_ecdsa().Andreas Schneider2013-06-181-0/+2
|
* connect: Use the correct close function.Andreas Schneider2013-06-181-1/+1
|
* connect: Correctly fail in ssh_connect_host_nonblocking().Andreas Schneider2013-06-181-0/+2
|
* ecdh: Make sure we don't leak memory in ssh_client_ecdh_init().Andreas Schneider2013-06-181-12/+27
| | | | This also adds more checks for return values.
* auth: Cleanup the agent return code.Andreas Schneider2013-06-181-4/+2
|
* auth: If the agent fails, fall back to regular pathNicolas Viennot2013-06-181-1/+1
| | | | | It's causing issues on MacOSX when ssh_agent_get_ident_count() reports "Agent count: 0".
* kex1: Fix null check of hostkey.Andreas Schneider2013-06-171-1/+1
|
* socket: Check if socket (non)blocking is working.Andreas Schneider2013-06-172-12/+34
|
* socket: Check return value of getsockopt().Andreas Schneider2013-06-171-1/+4
|
* packet: Fix a possible segfault.Andreas Schneider2013-06-171-7/+6
|
* messages: Fix a possible segfault.Andreas Schneider2013-06-171-1/+3
|
* ecdh: Check return values of buffer_add_* functions.Andreas Schneider2013-06-171-4/+23
|
* dh: Check return value of buffer_add_ssh_string().Andreas Schneider2013-06-171-2/+8
|
* connect: Check return value of getsockopt().Andreas Schneider2013-06-171-3/+4
|
* channels1: Check return value of buffer_add_u8().Andreas Schneider2013-06-171-1/+6
|
* packet1: Don't free an invalid address.Andreas Schneider2013-06-171-1/+0
|
* pki: Limit privkey to 4M for now.Andreas Schneider2013-06-171-0/+6
|
* pki: Fix a resource leak on error.Andreas Schneider2013-06-171-0/+3
|
* pki: Fix resource leak on error.Andreas Schneider2013-06-131-0/+1
|
* client: Fix possible NULL pointer dereference.Andreas Schneider2013-06-131-2/+2
|
* known_hosts: Fix readablity.Andreas Schneider2013-06-131-1/+1
|
* pki: Use fstat() after opening the file.Andreas Schneider2013-06-131-16/+16
|
* kex: Fix a double free.Andreas Schneider2013-06-131-0/+1
|
* server: Fix a double free.Andreas Schneider2013-06-131-4/+1
|
* BUG 103: Fix ProxyCommand parsing.Andreas Schneider2013-06-021-2/+21
|
* config: Rename ssh_config_get_str().Andreas Schneider2013-06-021-11/+11
|
* opts: Fix segfault in option parser.Andreas Schneider2013-06-021-3/+11
|
* getpass: Don't fail if stdin is not a tty.Andreas Schneider2013-04-051-23/+27
| | | | | We don't need to manipulate the tty state (such as turning off echo) when prompting for passwords if we're not reading from a tty.
* poll: return error on poll() when pollset is emptyAris Adamantiadis2013-02-261-1/+1
|
* socket: Call data handler as long as handler takes data.Johannes Krude2013-01-291-4/+6
| | | | Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
* include: Fix the LGPL header.Andreas Schneider2013-01-231-13/+12
| | | | | This has been reported by rpmlint: libssh-devel.x86_64: W: incorrect-fsf-address libssh.h
* options: Fix a free crash bug if we parse unknown options.Andreas Schneider2013-01-221-6/+8
| | | | Thanks to Yong Chuan Koh, X-Force Research <kohyc@sg.ibm.com>
* Report according status when errors are detectedAris Adamantiadis2012-12-271-3/+18
|
* Fix channel_write to wait during key reexchangesAris Adamantiadis2012-12-231-1/+20
|
* Implement key re-exchangeAris Adamantiadis2012-12-236-14/+44
|
* Fix an invalid strlen comparison in ssh_message_auth_reply_defaultAndrew Collins2012-12-191-1/+1
| | | | | | | | | During the transition to strncat in ssh_message_auth_reply_default, an invalid strlen comparison was added which causes the function to fail whenever it's called. Signed-off-by: Andrew Collins <bsderandrew@gmail.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
* string: Fix memory leak in ssh_string_to_char().Andreas Schneider2012-12-131-6/+6
| | | | This was probably a mistake by me fixing up a patch after merging.
* BUG 97: Remove obsolete hsterror().Andreas Schneider2012-12-031-12/+1
| | | | | | This function is pretty much obsolete on most platforms. The standard errno should be used. If it is not enough on Windows we should use WSAGetLastError() in future.
* BUG 94: Fix big endian issue.Andreas Schneider2012-12-031-3/+5
|
* pki: Add a size limit for pubkey files.Andreas Schneider2012-11-211-1/+1
|
* CVE-2012-4559: Make sure we don't free name and longname twice on error.Andreas Schneider2012-11-141-10/+16
|
* CVE-2012-4559: Ensure that we don't free req twice.Andreas Schneider2012-11-141-1/+1
|
* CVE-2012-4560: Fix a write one past the end of 'buf'.Andreas Schneider2012-11-141-2/+3
|
* CVE-2012-4560: Fix a write one past the end of the 'u' buffer.Andreas Schneider2012-11-141-1/+1
|
* CVE-2012-4562: Fix a possible infinite loop in buffer_reinit().Andreas Schneider2012-11-141-4/+9
| | | | | If needed is bigger than the highest power of two or a which fits in an integer we will loop forever.
* CVE-2012-4562: Fix multiple integer overflows in buffer-related functions.Xi Wang2012-11-141-5/+21
|
* CVE-2012-4562: Fix possible integer overflows.Xi Wang2012-11-141-2/+14
|
* CVE-2012-4562: Fix possible integer overflow in ssh_get_hexa().Xi Wang2012-11-141-0/+5
| | | | No exploit known, but it is better to check the string length.
* pki: Fix integer overflow in ssh_pki_import_privkey_file().Xi Wang2012-10-221-0/+5
| | | | | If the file size is ULONG_MAX, the call to malloc() may allocate a small buffer, leading to a memory corruption.
* channels: Fix integer overflow in generate_cookie().Xi Wang2012-10-221-1/+1
| | | | | | Since the type of rnd[i] is signed char, (rnd[i] >> 4), which is considered as arithmetic shift by gcc, could be negative, leading to out-of-bounds read.
generated by cgit (git 2.34.1) at 2025-09-25 17:28:46 +0000