From fff7ba2f2d3f1473d76a9d47a5a1a708669ca80b Mon Sep 17 00:00:00 2001 From: Paul Menzel Date: Mon, 4 Sep 2017 12:46:06 +0200 Subject: [PATCH] openssh: Update version from 7.4p1 to 7.5p1 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Release notes are available online [1]. > […] > > Changes since OpenSSH 7.4 > ========================= > > This is a bugfix release. > > Security > -------- > > * ssh(1), sshd(8): Fix weakness in CBC padding oracle countermeasures > that allowed a variant of the attack fixed in OpenSSH 7.3 to proceed. > Note that the OpenSSH client disables CBC ciphers by default, sshd > offers them as lowest-preference options and will remove them by > default entriely in the next release. Reported by Jean Paul > Degabriele, Kenny Paterson, Martin Albrecht and Torben Hansen of > Royal Holloway, University of London. > > * sftp-client(1): [portable OpenSSH only] On Cygwin, a client making > a recursive file transfer could be maniuplated by a hostile server to > perform a path-traversal attack. creating or modifying files outside > of the intended target directory. Reported by Jann Horn of Google > Project Zero. > > New Features > ------------ > > * ssh(1), sshd(8): Support "=-" syntax to easily remove methods from > algorithm lists, e.g. Ciphers=-*cbc. bz#2671 > > […] [1] https://www.openssh.com/txt/release-7.5 --- openssh.be0 | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/openssh.be0 b/openssh.be0 index 8dfff8460..7a9fe1092 100755 --- a/openssh.be0 +++ b/openssh.be0 @@ -1,6 +1,6 @@ #!/bin/env beesh -# BEE_VERSION openssh-7.4_p1-0 +# BEE_VERSION openssh-7.5_p1-0 SRCURL[0]="https://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PKGVERSION}${PKGEXTRAVERSION}.tar.gz"