aboutsummaryrefslogtreecommitdiff
path: root/gnu/local.mk
diff options
context:
space:
mode:
authorLeo Famulari <leo@famulari.name>2018-08-15 16:28:25 -0400
committerLeo Famulari <leo@famulari.name>2018-08-21 11:16:30 -0400
commit6cd2c4a83cc2baa387d04979b489bee2429cc39d (patch)
tree62e38cf3a33b7b7e4af29a584e1b8b52a20da00f /gnu/local.mk
parent2fbc38e33bfdcc2b037397ea35977ef82daaacad (diff)
downloadgnu-guix-6cd2c4a83cc2baa387d04979b489bee2429cc39d.tar
gnu-guix-6cd2c4a83cc2baa387d04979b489bee2429cc39d.tar.gz
gnu: openssh: Don't allow remote username enumeration [fixes CVE-2018-15473].
* gnu/packages/patches/openssh-CVE-2018-15473.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/ssh.scm (openssh)[source]: Use it.
Diffstat (limited to 'gnu/local.mk')
-rw-r--r--gnu/local.mk1
1 files changed, 1 insertions, 0 deletions
diff --git a/gnu/local.mk b/gnu/local.mk
index 4013803b0b..eb0862448f 100644
--- a/gnu/local.mk
+++ b/gnu/local.mk
@@ -997,6 +997,7 @@ dist_patch_DATA = \
%D%/packages/patches/openldap-CVE-2017-9287.patch \
%D%/packages/patches/openocd-nrf52.patch \
%D%/packages/patches/opensmtpd-fix-crash.patch \
+ %D%/packages/patches/openssh-CVE-2018-15473.patch \
%D%/packages/patches/openssl-runpath.patch \
%D%/packages/patches/openssl-1.0.2-CVE-2018-0495.patch \
%D%/packages/patches/openssl-1.0.2-CVE-2018-0732.patch \