shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-04 12:20:42 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
22492b69bba22b102342afc574800d354a08e405
libssh/src
History
Norbert Pocs 22492b69bb CVE-2023-6004: config_parser: Check for valid syntax of a hostname if it is a domain name 
This prevents code injection.
The domain name syntax checker is based on RFC1035.

Signed-off-by: Norbert Pocs <norbertpocs0@gmail.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>
2023-12-18 17:43:48 +01:00
..
ABI
Bump version to 0.10.5
2023-05-04 13:37:20 +02:00
external
Fix various spelling issues reported by codespell
2022-11-18 16:18:44 +01:00
threads
[winlocks] Include stdlib.h to avoid crash in Windows
2021-03-11 09:02:08 -05:00
agent.c
documentation: Fix Missing param doxygen warnings
2023-02-02 10:44:56 +01:00
auth.c
Do not build the PKCS#11 when disabled
2023-02-02 10:42:48 +01:00
base64.c
base64: Use SSH_BUFFER_FREE()
2019-12-09 16:08:03 +01:00
bignum.c
bignum: Avoid bogus newline in the log
2023-03-20 13:41:04 +01:00
bind_config.c
Fix multiple spelling and grammar mistakes
2022-05-02 19:05:51 +02:00
bind.c
bind: Set socket connected after accepting connection
2022-11-18 16:19:49 +01:00
buffer.c
buffer.c: Fix null pointer dereference error
2023-05-04 11:53:10 +02:00
callbacks.c
callbacks: Implement list of callbacks for channels
2016-05-02 16:56:54 +02:00
chachapoly.c
Fix multiple spelling and grammar mistakes
2022-05-02 19:05:51 +02:00
channels.c
channels: Avoid out-of-bounds writes
2023-12-18 17:43:33 +01:00
client.c
CVE-2023-1667:kex: Add support for sending first_kex_packet_follows flag
2023-05-04 11:52:20 +02:00
CMakeLists.txt
cmake: Return back the DEFAULT_C_COMPILE_FLAGS
2023-04-17 13:46:41 +02:00
config_parser.c
CVE-2023-6004: config_parser: Check for valid syntax of a hostname if it is a domain name
2023-12-18 17:43:48 +01:00
config.c
config: Fix indentation
2023-03-20 13:41:04 +01:00
connect.c
Rewrite strerror to ssh_strerror
2022-07-04 11:55:40 +02:00
connector.c
Reformat ssh_connector_fd_out_cb
2023-03-20 13:41:04 +01:00
crypto_common.c
crypto: Use stdint types and make code more readable of secure_memcmp()
2022-06-20 09:18:59 +02:00
curve25519.c
CVE-2023-1667:dh: Expose the callback cleanup functions
2023-05-04 11:52:17 +02:00
dh_crypto.c
Fix memory leaks of bignums when openssl >= 3.0
2022-11-29 15:01:08 +01:00
dh_key.c
Fix various spelling issues reported by codespell
2022-11-18 16:18:44 +01:00
dh-gex.c
CVE-2023-1667:dh: Expose the callback cleanup functions
2023-05-04 11:52:17 +02:00
dh.c
CVE-2023-1667:dh: Expose the callback cleanup functions
2023-05-04 11:52:17 +02:00
ecdh_crypto.c
Port functions to openssl3.0
2022-07-07 08:39:39 +02:00
ecdh_gcrypt.c
Fix various spelling issues reported by codespell
2022-11-18 16:18:44 +01:00
ecdh_mbedcrypto.c
Fix mbedTLS issues caused by v3 API changes
2022-07-04 08:52:18 +02:00
ecdh.c
CVE-2023-1667:dh: Expose the callback cleanup functions
2023-05-04 11:52:17 +02:00
error.c
error.c: Remove dot from documentation group definition
2022-11-18 16:17:09 +01:00
gcrypt_missing.c
dh: Do some basic refactoring
2019-01-24 11:56:23 +01:00
getpass.c
Reformat most of the function headers
2022-06-09 09:08:02 +02:00
getrandom_crypto.c
getrandom_crypto.c: Add function to the documentation
2022-11-18 16:17:12 +01:00
getrandom_gcrypt.c
Build external override library with all symbols
2022-08-02 16:01:35 +02:00
getrandom_mbedcrypto.c
Build external override library with all symbols
2022-08-02 16:01:35 +02:00
gssapi.c
Add missing return value check
2023-05-04 11:53:10 +02:00
gzip.c
Reformat gzip.c
2023-02-02 10:42:25 +01:00
init.c
Add missing includes for fprintf()
2022-11-25 15:41:29 +01:00
kdf.c
kdf: Avoid endianess issues
2022-09-07 15:29:03 +02:00
kex.c
CVE-2023-1667:kex: Add support for sending first_kex_packet_follows flag
2023-05-04 11:52:20 +02:00
known_hosts.c
Update HMAC function parameter type
2022-07-07 08:39:39 +02:00
knownhosts.c
Clean up usage of HAVE_ECC and HAVE_ECDH
2023-02-02 10:42:58 +01:00
legacy.c
Use EVP_PKEY as a key type in key structs
2022-07-07 08:39:39 +02:00
libcrypto-compat.c
Remove no longer needed compatibility function
2021-01-11 10:45:22 +01:00
libcrypto-compat.h
Define EC name constants for openssl3
2022-07-07 08:39:39 +02:00
libcrypto.c
libcrypto.c: Change function parameter name
2022-11-18 16:21:20 +01:00
libgcrypt.c
Fix various spelling issues reported by codespell
2022-11-18 16:18:44 +01:00
libmbedcrypto.c
Fix various spelling issues reported by codespell
2022-11-18 16:18:44 +01:00
libssh.map
API: Bump SO version to 4.9.0
2022-07-02 07:04:48 +02:00
log.c
log.c: Remove dot from documentation group definition
2022-11-18 16:17:14 +01:00
match.c
Fix type mismatch warnings
2022-06-15 14:47:06 +02:00
mbedcrypto_missing.c
mbedcrypto_missing: Always check return values
2019-12-23 14:31:32 +01:00
mbedcrypto-compat.h
Fix mbedTLS issues caused by v3 API changes
2022-07-04 08:52:18 +02:00
md_crypto.c
Move digest functions into separate file
2022-08-02 16:01:42 +02:00
md_gcrypt.c
Move digest functions into separate file
2022-08-02 16:01:42 +02:00
md_mbedcrypto.c
Move digest functions into separate file
2022-08-02 16:01:42 +02:00
messages.c
messages.c: Add missing function documentation
2022-11-18 16:17:17 +01:00
misc.c
CVE-2023-6004: misc: Add function to check allowed characters of a hostname
2023-12-18 17:43:48 +01:00
options.c
CVE-2023-6004: options: Simplify the hostname parsing in ssh_options_set
2023-12-18 17:43:48 +01:00
packet_cb.c
CVE-2023-1667:packet_cb: Log more verbose error if signature verification fails
2023-05-04 11:52:06 +02:00
packet_crypt.c
packet: Check hmac return codes in ssh_packet_hmac_verify()
2022-07-14 15:03:58 +02:00
packet.c
CVE-2023-1667:packet: Do not allow servers to initiate handshake
2023-05-04 11:52:12 +02:00
pcap.c
doc: Fix doxygen errors when QUIET=yes EXTRACT_ALL=yes
2023-03-20 13:41:04 +01:00
pki_container_openssh.c
Add missing return value check
2023-05-04 11:53:10 +02:00
pki_crypto.c
CVE-2023-2283:pki_crypto: Remove unnecessary NULL check
2023-05-04 11:52:52 +02:00
pki_ed25519_common.c
pki_ed25519_common.c: Change function parameter name
2022-11-18 16:21:20 +01:00
pki_ed25519.c
unsorted formatting cleanup
2022-05-10 12:39:26 +02:00
pki_gcrypt.c
Do not build the PKCS#11 when disabled
2023-02-02 10:42:48 +01:00
pki_mbedcrypto.c
Do not build the PKCS#11 when disabled
2023-02-02 10:42:48 +01:00
pki.c
documentation: Fix Missing param doxygen warnings
2023-02-02 10:44:56 +01:00
poll.c
poll: Avoid passing other events to callbacks when called recursively
2023-12-18 17:43:46 +01:00
scp.c
Fix various spelling issues reported by codespell
2022-11-18 16:18:44 +01:00
server.c
Fix ssh_send_issue_banner() for CMD(PowerShell)
2023-12-18 17:43:27 +01:00
session.c
session: Avoid potential null dereference on low-memory conditions
2023-12-18 17:43:30 +01:00
sftp.c
sftp: fix the length calculation of packet in sftp_write
2022-06-29 18:29:26 +02:00
sftpserver.c
sftpserver: Add missing return check for ssh_buffer_add_data()
2020-06-03 10:38:40 +02:00
socket.c
Add tests for run ssh_execute_command
2023-04-28 11:06:16 +02:00
string.c
Fix multiple spelling and grammar mistakes
2022-05-02 19:05:51 +02:00
threads.c
threads.c: Remove dot from documentation group definition
2022-11-18 16:17:29 +01:00
token.c
token: Add missing whitespace
2023-04-28 11:36:54 +02:00
wrapper.c
wrapper: Reformat crypto_new
2023-04-28 11:36:47 +02:00