# HG changeset patch # User Matt Johnston # Date 1149696254 0 # Node ID 1857c2c551ea6f5bb48363039b83c32b8e5303a2 # Parent d965110e3f5c36400152db6299ac5a3452edea18 Bring in changes from Debian 0.48.1-1 diff -r d965110e3f5c -r 1857c2c551ea dbclient.1 --- a/dbclient.1 Wed Jun 07 15:47:04 2006 +0000 +++ b/dbclient.1 Wed Jun 07 16:04:14 2006 +0000 @@ -29,24 +29,23 @@ .I idfile (multiple allowed). .TP -.B \-L \fIlocalport\fR:\fIremotehost\fR:\fIremoteport\fR +.B \-L \fIlistenport\fR:\fIhost\fR:\fIport\fR Local port forwarding. Forward the port -.I localport -on the local host to port -.I remoteport -on the remote host -.IR remotehost . +.I listenport +on the local host through the SSH connection to port +.I port +on the host +.IR host . .TP -.B \-R \fIlocalport\fR:\fIremotehost\fR:\fIremoteport\fR +.B \-R \fIlistenport\fR:\fIhost\fR:\fIport\fR Remote port forwarding. Forward the port -.I remoteport -on the remote host -.I remotehost -to port -.I localport -on the local host. +.I listenport +on the remote host through the SSH connection to port +.I port +on the host +.IR host . .TP .B \-l \fIuser Username. diff -r d965110e3f5c -r 1857c2c551ea debian/changelog --- a/debian/changelog Wed Jun 07 15:47:04 2006 +0000 +++ b/debian/changelog Wed Jun 07 16:04:14 2006 +0000 @@ -1,14 +1,32 @@ -dropbear (0.48-0.1) unstable; urgency=high +dropbear (0.48.1-1) unstable; urgency=medium + + * new upstream point release. + * Compile fix for scp + * debian/diff/dbclient.1.diff: new: document -R option to dbclient + accurately (thx Markus Schaber; closes: #351882). + * debian/dropbear.README.Debian: document a workaround for systems with + possibly blocking /dev/random device (closes: #355414).. + + -- Gerrit Pape Sun, 16 Apr 2006 16:16:40 +0000 + +dropbear (0.48-1) unstable; urgency=medium * New upstream release. - * SECURITY: Improve handling of denial of service attempts from a single IP. + * SECURITY: Improve handling of denial of service attempts from a single + IP. - -- Matt Johnston Thu, 8 Mar 2006 19:20:21 +0800 + * debian/implicit: update to revision 1.11. + * new upstream release updates to scp from OpenSSH 4.3p2 - fixes a + security issue where use of system() could cause users to execute + arbitrary code through malformed filenames; CVE-2006-0225 (see also + #349645); the scp binary is not provided by this package though. -dropbear (0.47-0.1) unstable; urgency=high + -- Gerrit Pape Fri, 10 Mar 2006 22:00:32 +0000 + +dropbear (0.47-1) unstable; urgency=high * New upstream release. - * SECURITY: Fix incorrect buffer sizing. + * SECURITY: Fix incorrect buffer sizing; CVE-2005-4178. -- Matt Johnston Thu, 8 Dec 2005 19:20:21 +0800 diff -r d965110e3f5c -r 1857c2c551ea debian/dropbear.README.Debian --- a/debian/dropbear.README.Debian Wed Jun 07 15:47:04 2006 +0000 +++ b/debian/dropbear.README.Debian Wed Jun 07 16:04:14 2006 +0000 @@ -39,3 +39,14 @@ See the Dropbear homepage for more information: http://matt.ucc.asn.au/dropbear/dropbear.html + +Entropy from /dev/random +------------------------ + +The dropbear binary package is configured at compile time to read +entropy from /dev/random. If /dev/random on a system blocks when +reading data from it, client logins may be delayed until the client +times out. The dropbear server writes a notice to the logs when it +sees /dev/random blocking. A workaround for such systems is to +re-compile the package with DROPBEAR_RANDOM_DEV set to /dev/urandom +in options.h. diff -r d965110e3f5c -r 1857c2c551ea debian/implicit --- a/debian/implicit Wed Jun 07 15:47:04 2006 +0000 +++ b/debian/implicit Wed Jun 07 16:04:14 2006 +0000 @@ -1,4 +1,4 @@ -# $Id: implicit,v 1.10 2004/07/03 15:20:00 pape Exp $ +# $Id: implicit,v 1.11 2005/11/29 21:57:55 pape Exp $ .PHONY: deb-checkdir deb-checkuid @@ -38,6 +38,14 @@ @gzip -9 debian/$*/usr/share/doc/$*/changelog* %.deb-docs-docs: @for i in `cat debian/$*.docs 2>/dev/null || :`; do \ + if test -d $$i; then \ + sh -cx "install -d -m0755 debian/$*/usr/share/doc/$*/$${i##*/}" && \ + for j in $$i/*; do \ + sh -cx "install -m0644 $$j \ + debian/$*/usr/share/doc/$*/$${i##*/}/" || exit 1; \ + done || exit 1; \ + continue; \ + fi; \ sh -cx "install -m0644 $$i debian/$*/usr/share/doc/$*/" || exit 1; \ done @test ! -r debian/$*.README.Debian || \