nixpkgs/pkgs/tools/networking/openssh
Emily e328c86314 openssh_{hpn,gssapi}: add backported security fix patches
Fixes a critical security bug allowing remote code execution as root:
<https://www.openssh.com/txt/release-9.8>

This may be CVE-2024-6387 (currently embargoed):
<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6387>

Thanks to upstream and Sam James <sam@gentoo.org> for the backport:
<1633ef4547>

Please don’t use these packages on the open internet if you care
a lot about security.
2024-07-01 13:06:28 +02:00
..
common.nix treewide: Remove indefinite article from meta.description 2024-06-09 23:07:45 +02:00
copyid.nix treewide: Remove indefinite article from meta.description 2024-06-09 23:07:45 +02:00
default.nix openssh_{hpn,gssapi}: add backported security fix patches 2024-07-01 13:06:28 +02:00
dont_create_privsep_path.patch
locale_archive.patch
openssh-9.6_p1-chaff-logic.patch openssh_{hpn,gssapi}: add backported security fix patches 2024-07-01 13:06:28 +02:00
openssh-9.6_p1-CVE-2024-6387.patch openssh_{hpn,gssapi}: add backported security fix patches 2024-07-01 13:06:28 +02:00
ssh-keysign-8.5.patch