Mercurial > dropbear
comparison CHANGES @ 1646:6d1bbe7d5fa5 DROPBEAR_2019.77
2019.77
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sat, 23 Mar 2019 21:46:29 +0800 |
| parents | 2fd52c383163 |
| children | 009d52ae26d3 |
comparison
equal
deleted
inserted
replaced
| 1645:0276c0f8c2b8 | 1646:6d1bbe7d5fa5 |
|---|---|
| 1 2019.77 - 23 March 2019 | |
| 2 | |
| 3 - Fix server -R option with ECDSA - only advertise one key size which will be accepted. | |
| 4 Reported by Peter Krefting, 2018.76 regression. | |
| 5 | |
| 6 - Fix server regression in 2018.76 where multiple client -R forwards were all forwarded | |
| 7 to the first destination. Reported by Iddo Samet. | |
| 8 | |
| 9 - Make failure delay more consistent to avoid revealing valid usernames, set server password | |
| 10 limit of 100 characters. Problem reported by usd responsible disclosure team | |
| 11 | |
| 12 - Change handling of failed authentication to avoid disclosing valid usernames, | |
| 13 CVE-2018-15599. | |
| 14 | |
| 15 - Fix dbclient to reliably return the exit code from the remote server. | |
| 16 Reported by W. Mike Petullo | |
| 17 | |
| 18 - Fix export of 521-bit ECDSA keys, from Christian Hohnstädt | |
| 19 | |
| 20 - Add -o Port=xxx option to work with sshfs, from xcko | |
| 21 | |
| 22 - Merged fuzzing code, see FUZZER-NOTES.md | |
| 23 | |
| 24 - Add a DROPBEAR_SVR_MULTIUSER=0 compile option to run on | |
| 25 single-user Linux kernels (CONFIG_MULTIUSER disabled). From Patrick Stewart | |
| 26 | |
| 27 - Increase allowed username to 100 characters, reported by W. Mike Petullo | |
| 28 | |
| 29 - Update config.sub and config.guess, should now work with RISC-V | |
| 30 | |
| 31 - Cygwin compile fix from karel-m | |
| 32 | |
| 33 - Don't require GNU sed (accidentally in 2018.76), reported by Samuel Hsu | |
| 34 | |
| 35 - Fix for IRIX and writev(), reported by Kazuo Kuroi | |
| 36 | |
| 37 - Other fixes and cleanups from François Perrad, Andre McCurdy, Konstantin Demin, | |
| 38 Michael Jones, Pawel Rapkiewicz | |
| 39 | |
| 40 | |
| 1 2018.76 - 27 February 2018 | 41 2018.76 - 27 February 2018 |
| 2 | 42 |
| 3 > > > Configuration/compatibility changes | 43 > > > Configuration/compatibility changes |
| 4 IMPORTANT | 44 IMPORTANT |
| 5 Custom configuration is now specified in localoptions.h rather than options.h | 45 Custom configuration is now specified in localoptions.h rather than options.h |