[ol8_developer_EPEL] libssh2-1.9.0-5.el8.x86_64

Name:	libssh2
Version:	1.9.0
Release:	5.el8
Architecture:	x86_64
Group:	Unspecified
Size:	267073
License:	BSD
RPM:	libssh2-1.9.0-5.el8.x86_64.rpm
Source RPM:	libssh2-1.9.0-5.el8.src.rpm
Build Date:	Thu Sep 17 2020
Build Host:	jenkins-172-17-0-2-11fd70d9-f8d8-4d1e-9560-ba8e5bd65303.appad2iad.osdevelopmeniad.oraclevcn.com
Vendor:	Oracle America
URL:	https://www.libssh2.org/
Summary:	A library implementing the SSH2 protocol
Description:	libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS(22), SECSH-USERAUTH(25), SECSH-CONNECTION(23), SECSH-ARCH(20), SECSH-FILEXFER(06)*, SECSH-DHGEX(04), and SECSH-NUMBERS(10).

Changelog (Show File list) (Show related packages)

Fri Mar 27 2020 Paul Howarth <paul@city-fan.org> - 1.9.0-5

- Switch to https:// upstream URLs
- Full groff (not just groff-base) needed for the mansyntax check

Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.0-4
```
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
```

Wed Oct 30 2019 Kamil Dudka <kdudka@redhat.com> - 1.9.0-3

- Fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)

Thu Jul 25 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.0-2
```
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
```

Thu Jun 20 2019 Paul Howarth <paul@city-fan.org> - 1.9.0-1

- Update to 1.9.0
  - Fixed integer overflow leading to out-of-bounds read (CVE-2019-13115)
  - Adds ECDSA keys and host key support when using OpenSSL
  - Adds ED25519 key and host key support when using OpenSSL 1.1.1
  - Adds OpenSSH style key file reading
  - Adds AES CTR mode support when using WinCNG
  - Adds PEM passphrase protected file support for libgcrypt and WinCNG
  - Adds SHA256 hostkey fingerprint
  - Adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path()
  - Adds explicit zeroing of sensitive data in memory
  - Adds additional bounds checks to network buffer reads
  - Adds the ability to use the server default permissions when creating sftp directories
  - Adds support for building with OpenSSL no engine flag
  - Adds support for building with LibreSSL
  - Increased sftp packet size to 256k
  - Fixed oversized packet handling in sftp
  - Fixed building with OpenSSL 1.1
  - Fixed a possible crash if sftp stat gets an unexpected response
  - Fixed incorrect parsing of the KEX preference string value
  - Fixed conditional RSA and AES-CTR support
  - Fixed a small memory leak during the key exchange process
  - Fixed a possible memory leak of the ssh banner string
  - Fixed various small memory leaks in the backends
  - Fixed possible out of bounds read when parsing public keys from the server
  - Fixed possible out of bounds read when parsing invalid PEM files
  - No longer null terminates the scp remote exec command
  - Now handle errors when Diffie Hellman key pair generation fails
  - Fixed compiling on Windows with the flag STDCALL=ON
  - Improved building instructions
  - Improved unit tests
- Needs OpenSSL ≥ 1.0.1 now as ECC support is assumed
- Modernize spec somewhat as EL-6 can no longer be supported

Tue Mar 26 2019 Paul Howarth <paul@city-fan.org> - 1.8.2-1

- Update to 1.8.2
  - Fixed the misapplied userauth patch that broke 1.8.1
  - Moved the MAX size declarations from the public header

Tue Mar 19 2019 Paul Howarth <paul@city-fan.org> - 1.8.1-1

- Update to 1.8.1
  - Fixed possible integer overflow when reading a specially crafted packet
    (CVE-2019-3855)
  - Fixed possible integer overflow in userauth_keyboard_interactive with a
    number of extremely long prompt strings (CVE-2019-3863)
  - Fixed possible integer overflow if the server sent an extremely large
    number of keyboard prompts (CVE-2019-3856)
  - Fixed possible out of bounds read when processing a specially crafted
    packet (CVE-2019-3861)
  - Fixed possible integer overflow when receiving a specially crafted exit
    signal message channel packet (CVE-2019-3857)
  - Fixed possible out of bounds read when receiving a specially crafted exit
    status message channel packet (CVE-2019-3862)
  - Fixed possible zero byte allocation when reading a specially crafted SFTP
    packet (CVE-2019-3858)
  - Fixed possible out of bounds reads when processing specially crafted SFTP
    packets (CVE-2019-3860)
  - Fixed possible out of bounds reads in _libssh2_packet_require(v)
    (CVE-2019-3859)
- Fix mis-applied patch in the fix of CVE-2019-3859
  - https://github.com/libssh2/libssh2/issues/325
  - https://github.com/libssh2/libssh2/pull/327

Mon Feb 04 2019 Paul Howarth <paul@city-fan.org> - 1.8.0-10

- Explicitly run the test suite in the en_US.UTF-8 locale to work around flaky
  locale settings in mock builders

Fri Feb 01 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.0-9
```
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
```
Fri Jul 13 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.0-8
```
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
```