Backport fix for CVE-2006-0353 from lsh2:

"unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator, which allows local users to cause a denial of service by truncating the seed file, which prevents the server from starting, or obtain sensitive seed information that could be used to crack keys." http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0353
author: salo <salo@pkgsrc.org> 2006-04-05 23:59:33 +0000
committer: salo <salo@pkgsrc.org> 2006-04-05 23:59:33 +0000
commit: 12e8fb90e223930833e6b2c0500c0fa7fc0c20a9 (patch)
tree: ffc58191a948eda45eeb9bfeb9d4fc90ff168300 /security/lsh/distinfo
parent: 36c3fdbed92a6fa0658a6403ae8ea25c68e60e00 (diff)
download: pkgsrc-12e8fb90e223930833e6b2c0500c0fa7fc0c20a9.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/security/lsh/distinfo b/security/lsh/distinfo
index cb9a796035a..3b2dbf3965a 100644
--- a/security/lsh/distinfo
+++ b/security/lsh/distinfo
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.4 2005/04/30 12:23:42 drochner Exp $
+$NetBSD: distinfo,v 1.5 2006/04/05 23:59:33 salo Exp $
 
 SHA1 (lsh-1.4.3.tar.gz) = 25cb15a0851b3209cc5b3552344fedf80221ad6f
 RMD160 (lsh-1.4.3.tar.gz) = c5bc410396f6426e2e609ded97296424d8a3bd46
@@ -6,3 +6,4 @@ Size (lsh-1.4.3.tar.gz) = 1414008 bytes
 SHA1 (patch-aa) = 08cb6cf3f28ae2281d109e20dc9585111009ea50
 SHA1 (patch-ab) = 179647434ecf7a4b42e301f1ac1c794f217d69d0
 SHA1 (patch-ac) = af2659ae7edb797481172c467936383e6d5a7f8a
+SHA1 (patch-ad) = 6ac62f9b78cddc7815f124543d3cb8b9a76563e6
author	salo <salo@pkgsrc.org>	2006-04-05 23:59:33 +0000
committer	salo <salo@pkgsrc.org>	2006-04-05 23:59:33 +0000
commit	12e8fb90e223930833e6b2c0500c0fa7fc0c20a9 (patch)
tree	ffc58191a948eda45eeb9bfeb9d4fc90ff168300 /security/lsh/distinfo
parent	36c3fdbed92a6fa0658a6403ae8ea25c68e60e00 (diff)
download	pkgsrc-12e8fb90e223930833e6b2c0500c0fa7fc0c20a9.tar.gz