Commit graph

23 commits

Author SHA1 Message Date
Tobias Geerinckx-Rice
7c84bd121a
dropbear: 2016.73 -> 2016.74
Security fixes:
- Message printout was vulnerable to format string injection
- dropbearconvert import of OpenSSH keys could run arbitrary code
  as the local dropbearconvert user when parsing malicious key
  files
- dbclient could run arbitrary code as the local dbclient user if
  particular -m or -c arguments are provided
- dbclient or dropbear server could expose process memory to the
  running user if compiled with DEBUG_TRACE and running with -v

Fixes:
- Fix port forwarding failure when connecting to domains that have
  both IPv4 and IPv6 addresses. The bug was introduced in 2015.68
- Fix 100% CPU use while waiting for rekey to complete
2016-07-23 21:29:51 +02:00
Nikolay Amiantov
659bea9dda dropbear: disable on Darwin 2016-06-11 03:38:57 +03:00
Nikolay Amiantov
938d64f1f3 quote URLs in my packages to ease opening them from urxvt 2016-04-30 03:12:32 +03:00
Tobias Geerinckx-Rice
a685456213 dropbear: 2016.72 -> 2016.73
Changes: https://matt.ucc.asn.au/dropbear/CHANGES.
2016-03-20 23:20:56 +01:00
Tobias Geerinckx-Rice
e834a7c05b dropbear: 2015.71 -> 2016.72
Bugfix release:
- Validate X11 forwarding input. Could allow bypass of
  authorized_keys command= restrictions.
2016-03-11 03:08:02 +01:00
Eelco Dolstra
a5d5736692 Typo 2016-02-02 19:59:27 +01:00
Tobias Geerinckx-Rice
889944af2c dropbear 2015.70 -> 2015.71
Another bugfix release.
2015-12-04 17:07:05 +01:00
Tobias Geerinckx-Rice
d118e51943 dropbear 2015.69 -> 2015.70
Fix server password authentication on Linux, broken in 2015.69.
2015-11-27 01:45:53 +01:00
Tobias Geerinckx-Rice
da29db5d41 dropbear 2015.68 -> 2015.69
Known changes:
- Fix crash when forwarded TCP connections fail to connect
  (bug introduced in 2015.68)
- Avoid hang on session close when multiple sessions are started,
  affects Qt Creator
- Reduce per-channel memory consumption in common case, increase default
  channel limit from 100 to 1000 which should improve SOCKS forwarding
  for modern webpages
- Handle multiple command line arguments in a single flag
- Manpage improvements
- Build fixes for Android
- Don't display the MOTD when an explicit command is run
- Check curve25519 shared secret isn't zero
2015-11-26 08:00:02 +01:00
Nikolay Amiantov
919762e4bd dropbear: adopt 2015-10-18 18:41:03 +03:00
Tobias Geerinckx-Rice
3059362c74 dropbear: 2015.67 -> 2015.68
Changes: https://matt.ucc.asn.au/dropbear/CHANGES
2015-08-13 03:05:53 +02:00
Tobias Geerinckx-Rice
32bd963427 dropbear 2014.66 -> 2015.67 2015-04-17 00:57:25 +02:00
John Wiegley
28b6fb61e6 Change occurrences of gcc to the more general cc
This is done for the sake of Yosemite, which does not have gcc, and yet
this change is also compatible with Linux.
2014-12-26 11:06:21 -06:00
Mateusz Kowalczyk
f4c350d26e dropbear: update from 2013.62 to 2014.66 2014-11-17 18:09:30 +00:00
Mateusz Kowalczyk
7a45996233 Turn some license strings into lib.licenses values 2014-07-28 11:31:14 +02:00
Nixpkgs Monitor
08a3ef19cd dropbear: update from 2013.60 to 2013.62 2013-12-10 01:07:30 +02:00
Nixpkgs Monitor
92de25cb55 dropbear: update from 2013.58 to 2013.60, potentially fixes CVE-2013-4421, CVE-2013-4434 2013-12-04 05:55:20 +02:00
Lluís Batlle i Rossell
83dee22f4a Fixing a crash bug in dropbear. 2013-06-18 23:35:53 +02:00
Lluís Batlle i Rossell
ae98b61850 dropbear: update to 2013.58, and build dynamically
I had to do a trick with GNU make, to allow it to find libs.
2013-06-18 23:35:53 +02:00
Lluís Batlle i Rossell
06c5e48804 Now yes allowing the sftp server path in dropbear. I commit too early, clearly.
svn path=/nixpkgs/trunk/; revision=26970
2011-04-25 15:04:56 +00:00
Lluís Batlle i Rossell
a5923a2e13 Allow overriding the sftp server path.
svn path=/nixpkgs/trunk/; revision=26969
2011-04-25 15:03:13 +00:00
Lluís Batlle i Rossell
e1a78aa1a0 Making dropbear sessions inherit the PATH
svn path=/nixpkgs/trunk/; revision=26967
2011-04-25 14:40:10 +00:00
Lluís Batlle i Rossell
12e960f592 Adding dropbear, a small implementation of ssh2 client and server.
I made it statically build by default

I had to fix the zlib static cross-build, because the native stripping corrupted the target
static library. It is not the first time I see this.

I add drobear to the cross-built packages for hydra.


svn path=/nixpkgs/trunk/; revision=20518
2010-03-09 23:11:12 +00:00