ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2024-12-26 00:41:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
b5cde26048
openwrt/package/network/services/dropbear/patches
History
Konstantin Demin b5cde26048 dropbear: cherry-pick upstream patches 
critical fixes:
- libtommath: possible integer overflow (CVE-2023-36328)
- implement Strict KEX mode (CVE-2023-48795)

various fixes:
- fix DROPBEAR_DSS and DROPBEAR_RSA config options
- y2038 issues
- remove SO_LINGER socket option
- make banner reading failure non-fatal
- fix "noremotetcp" behavior
- don't try to shutdown a pty
- fix test for multiuser kernels

adds new features:
- option to bind to interface
- allow inetd with non-syslog
- ignore unsupported command line options with dropbearkey

Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
2024-02-09 09:13:05 +00:00
..
001-add-if-DROPBEAR_RSA-guards.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
002-fix-y2038-issues.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
003-fix-DROPBEAR_DSS.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
004-allow-users-s-own-gid-in-pty-permission-check.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
005-const-parameter-mp_int.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
006-dropbearkey-add-missing-break-in-switch.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
007-fix-building-only-client-or-server.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
008-disable-rsa-signatures-when-no-rsa-hostkey.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
009-use-write-rather-than-fprintf-in-segv-handler.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
010-remove-SO_LINGER.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
011-add-option-to-bind-to-interface.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
012-add-ifdef-guards-for-SO_BINDTODEVICE.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
013-make-banner-reading-failure-non-fatal.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
014-dropbearkey-ignore-unsupported-command-line-option.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
015-libtommath-fix-possible-integer-overflow.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
016-src-svr-tcpfwd-Fix-noremotetcp-behavior.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
017-Don-t-try-to-shutdown-a-pty.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
018-dropbearkey-add-alias-to-ssh-keygen.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
019-Allow-inetd-with-non-syslog.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
020-Fix-test-for-multiuser-kernels.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
021-Implement-Strict-KEX-mode.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00
100-pubkey_path.patch dropbear: bump to 2022.83 2024-02-09 09:13:05 +00:00
110-change_user.patch dropbear: bump to 2022.82 2022-04-09 19:31:31 +02:00
130-ssh_ignore_x_args.patch dropbear: bump to 2022.83 2024-02-09 09:13:05 +00:00
140-disable_assert.patch dropbear: bump to 2022.82 2022-04-09 19:31:31 +02:00
160-lto-jobserver.patch dropbear: bump to 2022.82 2022-04-09 19:31:31 +02:00
600-allow-blank-root-password.patch dropbear: bump to 2022.82 2022-04-09 19:31:31 +02:00
900-configure-hardening.patch dropbear: bump to 2022.83 2024-02-09 09:13:05 +00:00
901-bundled-libs-cflags.patch dropbear: bump to 2022.83 2024-02-09 09:13:05 +00:00
910-signkey-fix-use-of-rsa-sha2-256-pubkeys.patch dropbear: cherry-pick upstream patches 2024-02-09 09:13:05 +00:00