Konstantin Demin
6549a711be
dropbear: cherry-pick upstream patches
critical fixes:
- libtommath: possible integer overflow (CVE-2023-36328)
- implement Strict KEX mode (CVE-2023-48795)
various fixes:
- fix DROPBEAR_DSS and DROPBEAR_RSA config options
- y2038 issues
- remove SO_LINGER socket option
- make banner reading failure non-fatal
- fix "noremotetcp" behavior
- don't try to shutdown a pty
- fix test for multiuser kernels
adds new features:
- option to bind to interface
- allow inetd with non-syslog
- ignore unsupported command line options with dropbearkey
Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
(cherry picked from commit b5cde26048)
[Only add the patches fixing security problems]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Tested-by: Stijn Segers <foss@volatilesystems.org>
2024-03-15 23:53:01 +01:00
..
2023-05-12 21:18:31 +02:00
2023-05-18 11:35:29 +02:00
2024-03-15 23:53:01 +01:00
2024-03-06 14:05:22 +01:00
2023-05-24 19:26:19 +01:00
2023-11-03 08:27:52 +01:00
2023-03-21 18:28:22 +01:00
2024-01-27 10:36:43 +01:00
2024-03-08 07:56:44 +00:00
2023-06-12 22:10:17 +02:00
2023-03-21 18:28:22 +01:00