[Buildroot] [PATCH] dropbear: add upstream security fix for CVE-2018-15599

Peter Korsgaard peter at korsgaard.com
Mon Aug 27 09:16:06 UTC 2018


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > dropbear is affected by an user enumeration vulnerability similar to the
 > recent issue in openssh (CVE-2018-15473).  Add an upstream patch fixing the
 > issue.

 > For more details, see the discussion on the mailing list:
 > http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2018q3/002110.html

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed to 2018.05.x, thanks (2018.02.x will need dropbear bumped
first).

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list