aboutsummaryrefslogtreecommitdiff
path: root/package/openssh
diff options
context:
space:
mode:
authorGravatar Gustavo Zacarias <gustavo@zacarias.com.ar>2016-03-10 15:34:28 -0300
committerGravatar Peter Korsgaard <peter@korsgaard.com>2016-03-10 20:49:57 +0100
commit55a94ec8936571df586d4f53ffc1355c651a63d3 (patch)
treec40dfbf5009c41385b521f35ad76f292e82f0f0e /package/openssh
parent67245dcbe14c2e98f44dcc717cfefedd6b7294d9 (diff)
downloadbuildroot-55a94ec8936571df586d4f53ffc1355c651a63d3.tar.gz
buildroot-55a94ec8936571df586d4f53ffc1355c651a63d3.tar.bz2
openssh: security bump to version 7.2p2
Fixes: CVE-2016-3115 - sanitise X11 authentication credentials to avoid xauth command injection when X11Forwarding is enabled. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/openssh')
-rw-r--r--package/openssh/openssh.hash2
-rw-r--r--package/openssh/openssh.mk2
2 files changed, 2 insertions, 2 deletions
diff --git a/package/openssh/openssh.hash b/package/openssh/openssh.hash
index 36346e072d..46d9f9be27 100644
--- a/package/openssh/openssh.hash
+++ b/package/openssh/openssh.hash
@@ -1,3 +1,3 @@
# Locally calculated after checking pgp signature
# Also from http://www.openssh.com/txt/release-7.2
-sha256 973cc37b2f3597e4cf599b09e604e79c0fe5d9b6f595a24e91ed0662860b4ac3 openssh-7.2p1.tar.gz
+sha256 a72781d1a043876a224ff1b0032daa4094d87565a68528759c1c2cab5482548c openssh-7.2p2.tar.gz
diff --git a/package/openssh/openssh.mk b/package/openssh/openssh.mk
index 0e0bcabb71..856646c073 100644
--- a/package/openssh/openssh.mk
+++ b/package/openssh/openssh.mk
@@ -4,7 +4,7 @@
#
################################################################################
-OPENSSH_VERSION = 7.2p1
+OPENSSH_VERSION = 7.2p2
OPENSSH_SITE = http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable
OPENSSH_LICENSE = BSD-3c BSD-2c Public Domain
OPENSSH_LICENSE_FILES = LICENCE