gnu: openssh: Don't allow remote username enumeration [fixes CVE-2018-15473].

* gnu/packages/patches/openssh-CVE-2018-15473.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/ssh.scm (openssh)[source]: Use it.
author: Leo Famulari <leo@famulari.name> 2018-08-15 16:28:25 -0400
committer: Leo Famulari <leo@famulari.name> 2018-08-21 11:16:30 -0400
commit: 6cd2c4a83cc2baa387d04979b489bee2429cc39d (patch)
tree: 62e38cf3a33b7b7e4af29a584e1b8b52a20da00f /gnu/local.mk
parent: 2fbc38e33bfdcc2b037397ea35977ef82daaacad (diff)
download: guix-patches-6cd2c4a83cc2baa387d04979b489bee2429cc39d.tar
guix-patches-6cd2c4a83cc2baa387d04979b489bee2429cc39d.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/gnu/local.mk b/gnu/local.mk
index 4013803b0b..eb0862448f 100644
--- a/gnu/local.mk
+++ b/gnu/local.mk
@@ -997,6 +997,7 @@ dist_patch_DATA =						\
   %D%/packages/patches/openldap-CVE-2017-9287.patch		\
   %D%/packages/patches/openocd-nrf52.patch			\
   %D%/packages/patches/opensmtpd-fix-crash.patch		\
+  %D%/packages/patches/openssh-CVE-2018-15473.patch		\
   %D%/packages/patches/openssl-runpath.patch			\
   %D%/packages/patches/openssl-1.0.2-CVE-2018-0495.patch	\
   %D%/packages/patches/openssl-1.0.2-CVE-2018-0732.patch	\
author	Leo Famulari <leo@famulari.name>	2018-08-15 16:28:25 -0400
committer	Leo Famulari <leo@famulari.name>	2018-08-21 11:16:30 -0400
commit	6cd2c4a83cc2baa387d04979b489bee2429cc39d (patch)
tree	62e38cf3a33b7b7e4af29a584e1b8b52a20da00f /gnu/local.mk
parent	2fbc38e33bfdcc2b037397ea35977ef82daaacad (diff)
download	guix-patches-6cd2c4a83cc2baa387d04979b489bee2429cc39d.tar guix-patches-6cd2c4a83cc2baa387d04979b489bee2429cc39d.tar.gz