openwrt

mirror of https://github.com/openwrt/openwrt.git synced 2024-12-28 17:48:58 +00:00

History

Konstantin Demin 6549a711be dropbear: cherry-pick upstream patches critical fixes: - libtommath: possible integer overflow (CVE-2023-36328) - implement Strict KEX mode (CVE-2023-48795) various fixes: - fix DROPBEAR_DSS and DROPBEAR_RSA config options - y2038 issues - remove SO_LINGER socket option - make banner reading failure non-fatal - fix "noremotetcp" behavior - don't try to shutdown a pty - fix test for multiuser kernels adds new features: - option to bind to interface - allow inetd with non-syslog - ignore unsupported command line options with dropbearkey Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> (cherry picked from commit `b5cde26048`) [Only add the patches fixing security problems] Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> Tested-by: Stijn Segers <foss@volatilesystems.org>		2024-03-15 23:53:01 +01:00
..
001-fix-MAX_UNAUTH_CLIENTS-regression.patch	dropbear: cherry-pick upstream commit 544f28a0	2022-06-27 00:57:15 +02:00
015-libtommath-fix-possible-integer-overflow.patch	dropbear: cherry-pick upstream patches	2024-03-15 23:53:01 +01:00
021-Implement-Strict-KEX-mode.patch	dropbear: cherry-pick upstream patches	2024-03-15 23:53:01 +01:00
100-pubkey_path.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
110-change_user.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
130-ssh_ignore_x_args.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
140-disable_assert.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
160-lto-jobserver.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
600-allow-blank-root-password.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
900-configure-hardening.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00
901-bundled-libs-cflags.patch	dropbear: bump to 2020.79	2020-06-21 21:33:23 +02:00
910-signkey-fix-use-of-rsa-sha2-256-pubkeys.patch	dropbear: bump to 2022.82	2022-04-09 19:31:31 +02:00