mirror of
https://github.com/openwrt/openwrt.git
synced 2024-12-22 23:12:32 +00:00
6549a711be
critical fixes:
- libtommath: possible integer overflow (CVE-2023-36328)
- implement Strict KEX mode (CVE-2023-48795)
various fixes:
- fix DROPBEAR_DSS and DROPBEAR_RSA config options
- y2038 issues
- remove SO_LINGER socket option
- make banner reading failure non-fatal
- fix "noremotetcp" behavior
- don't try to shutdown a pty
- fix test for multiuser kernels
adds new features:
- option to bind to interface
- allow inetd with non-syslog
- ignore unsupported command line options with dropbearkey
Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
(cherry picked from commit
|
||
---|---|---|
.. | ||
001-fix-MAX_UNAUTH_CLIENTS-regression.patch | ||
015-libtommath-fix-possible-integer-overflow.patch | ||
021-Implement-Strict-KEX-mode.patch | ||
100-pubkey_path.patch | ||
110-change_user.patch | ||
130-ssh_ignore_x_args.patch | ||
140-disable_assert.patch | ||
160-lto-jobserver.patch | ||
600-allow-blank-root-password.patch | ||
900-configure-hardening.patch | ||
901-bundled-libs-cflags.patch | ||
910-signkey-fix-use-of-rsa-sha2-256-pubkeys.patch |