diff options
Diffstat (limited to 'CHANGES')
| -rw-r--r-- | CHANGES | 23 |
1 files changed, 23 insertions, 0 deletions
@@ -1,3 +1,26 @@ +0.48 - + +- Check that the circular buffer is properly empty before + closing a channel, which could cause truncated transfers + (thanks to Tomas Vanek for helping track it down) + +- Implement per-IP pre-authentication connection limits + (after some poking from Pablo Fernandez) + +- Exit gracefully if trying to connect to as SSH v1 server + (reported by Rushi Lala) + +- Only read /dev/random once at startup when in non-inetd mode + +- Allow ctrl-c to close a dbclient password prompt (may + still have to press enter on some platforms) + +- Merged in uClinux patch for inetd mode + +- Updated to scp from OpenSSH 4.3p2 - fixes a security issue + where use of system() could cause users to execute arbitrary + code through malformed filenames, ref CVE-2006-0225 + 0.47 - Thurs Dec 8 2005 - SECURITY: fix for buffer allocation error in server code, could potentially |