openwrtv4/package/network/services
Hans Dedecker 2211ee0037 dropbear: backport upstream fix for CVE-2018-15599
CVE description :
The recv_msg_userauth_request function in svr-auth.c in Dropbear through
2018.76 is prone to a user enumeration vulnerability because username
validity affects how fields in SSH_MSG_USERAUTH messages are handled,
a similar issue to CVE-2018-15473 in an unrelated codebase.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
2018-08-24 15:25:26 +02:00
..
dnsmasq dnsmasq: remove creation of /etc/ethers 2018-08-21 15:55:10 +02:00
dropbear dropbear: backport upstream fix for CVE-2018-15599 2018-08-24 15:25:26 +02:00
ead ead: use new protocol setting API since libpcap 1.9.0 2018-07-27 11:17:20 +02:00
hostapd hostapd: process all CSA parameters 2018-08-20 09:24:43 +02:00
igmpproxy igmpproxy: drop SSDP packets 2018-07-30 10:43:36 +02:00
ipset-dns ipset-dns: bump to git HEAD 2017-10-08 20:51:03 +03:00
lldpd lldpd: bump to 1.0.1 2018-04-15 21:41:36 +03:00
odhcpd odhcpd: update to latest git HEAD 2018-07-26 14:53:05 +02:00
omcproxy omcproxy: silence fw3 warnings 2018-01-10 21:38:55 +01:00
openvpn treewide: Bump PKG_RELEASE due to mbedtls update 2018-07-30 10:35:12 +02:00
openvpn-easy-rsa openvpn-easy-rsa: update to 3.0.4 2018-07-30 10:43:38 +02:00
ppp ppp: fix building pptp plugin 2018-07-17 21:21:44 +02:00
relayd treewide: replace LEDE_GIT with PROJECT_GIT 2018-01-10 21:27:32 +01:00
samba36 samba36: Enable umdnsd support 2018-08-22 11:23:02 +02:00
uhttpd uhttpd: support multiple Lua prefixes 2018-08-23 09:18:04 +02:00
umdns treewide: replace LEDE_GIT with PROJECT_GIT 2018-01-10 21:27:32 +01:00
wireguard wireguard: bump to 0.0.20180809 2018-08-12 16:12:01 +02:00