main/openssh: security fixes

CVE-2018-20685, CVE-2019-6109, CVE-2019-6111 Rebase HPN patch Fixes #9996
author: Leonardo Arena <rnalrd@alpinelinux.org> 2019-03-01 09:15:30 +0000
committer: Leonardo Arena <rnalrd@alpinelinux.org> 2019-03-01 14:30:52 +0000
commit: 9730fd967a164b246d18cab2dede31af43c83f08 (patch)
tree: a9786caed4f316cbdd0641abb23e99cac821c2c9 /main/openssh/APKBUILD
parent: cb0e54726f6c9cb7dd8d5edf59166f7daa6a0bb5 (diff)
download: aports-9730fd967a164b246d18cab2dede31af43c83f08.tar.bz2
aports-9730fd967a164b246d18cab2dede31af43c83f08.tar.xz
1 files changed, 13 insertions, 2 deletions
diff --git a/main/openssh/APKBUILD b/main/openssh/APKBUILD
index fced60459e..9503f60e82 100644
--- a/main/openssh/APKBUILD
+++ b/main/openssh/APKBUILD
@@ -4,7 +4,7 @@
 pkgname=openssh
 pkgver=7.9_p1
 _myver=${pkgver%_*}${pkgver#*_}
-pkgrel=2
+pkgrel=3
 pkgdesc="Port of OpenBSD's free SSH release"
 url="https://www.openssh.org/portable.html"
 arch="all"
@@ -30,15 +30,23 @@ for _flavour in $_pkgsupport; do
 done
 
 source="https://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/$pkgname-$_myver.tar.gz
+	CVE-2018-20685.patch
+	CVE-2019-6109.patch
+	CVE-2019-6111.patch
 	openssh7.4-peaktput.patch
 	fix-utmp.patch
 	bsd-compatible-realpath.patch
 	sftp-interactive.patch
 	disable-forwarding-by-default.patch
+
 	sshd.initd
 	sshd.confd
 	"
 # secfixes:
+#   7.9_p1-r3:
+#     - CVE-2018-20685
+#     - CVE-2019-6109
+#     - CVE-2019-6111
 #   7.7_p1-r4:
 #     - CVE-2018-15473
 #   7.5_p1-r8:
@@ -197,7 +205,10 @@ _pkg_flavour() {
 }
 
 sha512sums="0412c9c429c9287f0794023951469c8e6ec833cdb55821bfa0300dd90d0879ff60484f620cffd93372641ab69bf0b032c2d700ccc680950892725fb631b7708e  openssh-7.9p1.tar.gz
-398096a89aa104abeff31aa043ac406a6348e0fdd4d313b7888ee0b931d38fd71fc21bceee46145e88f03bc27e00890e068442faee2d33f86cfbc04d58ffa4b6  openssh7.4-peaktput.patch
+b8907d3d6ebceeca15f6bc97551a7613c68df5c31e4e76d43b7c0bd9ad42dedcabc20a2cc5404b89f40850a4765b24892bde50eab1db55c96ad5cf23bb1f8d04  CVE-2018-20685.patch
+299e24dbe73d170d16769fa46e52045e034ff8eb2e7ed26bf2e29d941f067ebbe7e66f4a1253576d13ef689922ac2948215ecd744f57a362cb175549080f41ca  CVE-2019-6109.patch
+7b321e7ff7cff7fb956efd30d3ee770eb553e2db8d0d5e613624859f877efe55da8989f03cdf9e206b397bbc9b6b584c4374073af1a524981e8420c72daf648c  CVE-2019-6111.patch
+7b5ec0c18117437d8ed5132e13b29d604b49a11c571ee89316d1adeb457092379130b9af6b97effa6b2d05d5d5512cf82ebf76803c29cbc5ab387bf87bafd7b9  openssh7.4-peaktput.patch
 f35fffcd26635249ce5d820e7b3e406e586f2d2d7f6a045f221e2f9fb53aebc1ab1dd1e603b3389462296ed77921a1d08456e7aaa3825cbed08f405b381a58e1  fix-utmp.patch
 f2b8daa537ea3f32754a4485492cc6eb3f40133ed46c0a5a29a89e4bcf8583d82d891d94bf2e5eb1c916fa68ec094abf4e6cd641e9737a6c05053808012b3a73  bsd-compatible-realpath.patch
 c1d09c65dbc347f0904edc30f91aa9a24b0baee50309536182455b544f1e3f85a8cecfa959e32be8b101d8282ef06dde3febbbc3f315489339dcf04155c859a9  sftp-interactive.patch
author	Leonardo Arena <rnalrd@alpinelinux.org>	2019-03-01 09:15:30 +0000
committer	Leonardo Arena <rnalrd@alpinelinux.org>	2019-03-01 14:30:52 +0000
commit	9730fd967a164b246d18cab2dede31af43c83f08 (patch)
tree	a9786caed4f316cbdd0641abb23e99cac821c2c9 /main/openssh/APKBUILD
parent	cb0e54726f6c9cb7dd8d5edf59166f7daa6a0bb5 (diff)
download	aports-9730fd967a164b246d18cab2dede31af43c83f08.tar.bz2 aports-9730fd967a164b246d18cab2dede31af43c83f08.tar.xz