libssh/src at libssh-0.6.4 - libssh - GitFox

lib/libssh

mirror of https://git.libssh.org/projects/libssh.git synced 2025-08-07 08:02:55 +03:00

Files

History

Jon Simons 87ae95eb3c CVE-2014-8132: Fixup error path in ssh_packet_kexinit()

Before this change, dangling pointers can be unintentionally left in the
respective next_crypto kex methods slots.  Ensure to set all slots to
NULL in the error-out path.

Signed-off-by: Jon Simons <jon@jonsimons.org>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
(cherry picked from commit 2ced24ddd67a261dc364ad4d8958c068c1671ae7)

2014-12-17 19:45:23 +01:00

..

cmake: Fix the build on Windows.

2014-12-17 19:31:32 +01:00

agent.c

update copyright information

2014-01-07 15:18:44 +01:00

auth1.c

src: Remove enter_function() and leave_function().

2013-07-14 13:31:24 +02:00

auth.c

update copyright information

2014-01-07 15:18:44 +01:00

base64.c

base64: Added casts to GET macros to fix build warnings.

2011-01-02 19:35:54 +01:00

bind.c

bind: only set bindfd after successful listen

2014-03-12 14:16:28 +01:00

buffer.c

CVE-2012-4562: Fix a possible infinite loop in buffer_reinit().

2012-11-14 17:36:22 +01:00

callbacks.c

src: Update my mail address.

2014-01-07 16:09:04 +01:00

channels1.c

src: Update my mail address.

2014-01-07 16:09:04 +01:00

channels.c

doc: Improve docs for ssh_channel_get_exit_status().

2014-04-22 09:09:57 +02:00

client.c

client: fix corner case when sockets are manually created

2014-03-27 11:14:25 +01:00

CMakeLists.txt

build: Use Threads_FOUND to decide whether to build ssh_threads.

2014-02-06 11:13:23 +01:00

config.c

config: Also tokenize on equal sign.

2014-12-17 10:35:17 +01:00

connect.c

connect: Do not fail if the connect is in progress.

2014-10-28 10:33:47 +01:00

crc32.c

priv: Create crc32.h.

2011-09-18 21:37:17 +02:00

curve25519_ref.c

curve25519: include reference implementation

2013-11-03 14:58:47 +01:00

curve25519.c

curve25519: Fix memory leaks in ssh_server_curve25519_init().

2013-11-27 22:53:53 +01:00

dh.c

pki_crypto.c: plug ecdsa_sig->[r,s] bignum leaks

2014-12-05 10:46:31 +01:00

ecdh.c

update copyright information

2014-01-07 15:18:44 +01:00

error.c

doc: Fix description of error parameter for ssh_get_error*

2014-01-22 09:46:00 +01:00

gcrypt_missing.c

priv: Move gcrypt functions to gcrypt header.

2011-09-18 21:37:17 +02:00

getpass.c

update copyright information

2014-01-07 15:18:44 +01:00

gssapi.c

gssapi: ssh_gssapi_set_creds() is a client side function

2014-10-12 15:47:13 +02:00

gzip.c

src: Update my mail address.

2014-01-07 16:09:04 +01:00

init.c

init: Some initialization fixes.

2011-05-01 19:42:50 +02:00

kex1.c

src: Remove enter_function() and leave_function().

2013-07-14 13:31:24 +02:00

kex.c

CVE-2014-8132: Fixup error path in ssh_packet_kexinit()

2014-12-17 19:45:23 +01:00

known_hosts.c

knownhosts: resolve leaks found by coverity

2014-02-05 08:08:31 +01:00

legacy.c

src: Remove enter_function() and leave_function().

2013-07-14 13:31:24 +02:00

libcrypto.c

libcrypto: Fix Windows build with ssh_reseed().

2014-12-17 19:40:57 +01:00

libgcrypt.c

crypto: check malloc return in ssh_mac_ctx_init

2014-10-02 08:26:08 +02:00

log.c

update copyright information

2014-01-07 15:18:44 +01:00

match.c

match: Don't dereference 's' directly.

2012-10-09 11:09:34 +02:00

messages.c

messages: Fix a possible double free.

2014-12-05 10:59:41 +01:00

misc.c

src: Define MAX_BUF_SIZE globally and use it.

2014-02-02 22:21:07 +01:00

options.c

Set the correct error in ssh_options_set().

2014-12-05 11:04:35 +01:00

packet1.c

packet: Do not decrypt zero length rest of buffer

2014-02-06 19:40:09 +01:00

packet_cb.c

packet: log disconnect code in host byte order

2014-03-12 14:16:30 +01:00

packet_crypt.c

packet_crypt: Make packet_{en,de}crypt fail consistently on len == 0

2014-02-06 19:40:29 +01:00

packet.c

packet: elide two buffer_prepend calls into one

2014-03-27 11:25:15 +01:00

pcap.c

pcap: Check return codes of buffer_add_* functions.

2012-10-09 11:09:34 +02:00

pki_crypto.c

pki_crypto.c: plug ecdsa_sig->[r,s] bignum leaks

2014-12-05 10:46:31 +01:00

pki_gcrypt.c

pki_gcrypt: Initialize 'type_c' in 'pki_do_sign_sessionid'

2014-10-02 08:30:30 +02:00

pki.c

pki: Fix build without ECC support.

2014-05-09 08:56:10 +02:00

poll.c

src: Update my mail address.

2014-01-07 16:09:04 +01:00

scp.c

Revert f2c2687ca6

2014-02-05 22:30:10 +01:00

server.c

server: silence build warning

2014-03-12 14:16:33 +01:00

session.c

session: fix ssh_session->srv.ecdsa_key leak

2014-05-28 10:24:01 +02:00

sftp.c

src: Define MAX_BUF_SIZE globally and use it.

2014-02-02 22:21:07 +01:00

sftpserver.c

sftp: more flexibility on channels

2013-07-13 15:01:17 +02:00

socket.c

socket: fix read of non-connected socket

2014-02-02 22:21:07 +01:00

string.c

string: Correctly burn the string buffer.

2014-09-15 20:46:06 +02:00

threads.c

threads: support libgcrypt 1.6 hack

2014-01-08 22:06:38 +01:00

wrapper.c

wrapper: fix z_stream leak

2014-10-02 08:25:27 +02:00