summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorPeter Korsgaard <peter@korsgaard.com>2013-10-04 14:54:40 (GMT)
committer Peter Korsgaard <peter@korsgaard.com>2013-10-04 14:54:40 (GMT)
commit69b37ad7cc3e81e04b28f608d3e015faf4f8c448 (patch)
tree9882cc83ceb9f7e34b0bd4083c54c2619facee37
parent8fdedb84b1860c6286cfbf2d9d83c4465da8c787 (diff)
downloadbuildroot-69b37ad7cc3e81e04b28f608d3e015faf4f8c448.tar.gz
buildroot-69b37ad7cc3e81e04b28f608d3e015faf4f8c448.tar.bz2
dropbear: bump version
Fixes two security issues: - The Dropbear server could be made to consume large amounts of memory because decompressed packet sizes weren't checked. Depending on the OS and hardware this might be a denial of service. - Valid users could be identified due to timing variations. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
-rw-r--r--package/dropbear/dropbear.mk2
1 files changed, 1 insertions, 1 deletions
diff --git a/package/dropbear/dropbear.mk b/package/dropbear/dropbear.mk
index 34dd79b..c4372ca 100644
--- a/package/dropbear/dropbear.mk
+++ b/package/dropbear/dropbear.mk
@@ -4,7 +4,7 @@
#
################################################################################
-DROPBEAR_VERSION = 2013.58
+DROPBEAR_VERSION = 2013.59
DROPBEAR_SITE = http://matt.ucc.asn.au/dropbear/releases
DROPBEAR_SOURCE = dropbear-$(DROPBEAR_VERSION).tar.bz2
DROPBEAR_TARGET_BINS = dbclient dropbearkey dropbearconvert scp ssh