Browse code
paramiko : Updated to version 1.17.6, fix CVE-2018-7750
Change-Id: Ie129459c89f9e8fcf36c287de5c905fd4a7e7f4f
Reviewed-on: http://photon-jenkins.eng.vmware.com:8082/5039
Tested-by: gerrit-photon <photon-checkins@vmware.com>
Reviewed-by: Anish Swaminathan <anishs@vmware.com>
Xiaolin Li authored on 2018/04/20 08:33:25Showing 2 changed files
| 1 | 1 |
deleted file mode 100644 |
| ... | ... |
@@ -1,23 +0,0 @@ |
| 1 |
-From 9c6bc36be24e4c90abd3ef2033223fab97ca5341 Mon Sep 17 00:00:00 2001 |
|
| 2 |
-From: jhall150 <jhall150@bloomberg.net> |
|
| 3 |
-Date: Thu, 31 Mar 2016 10:15:47 -0400 |
|
| 4 |
-Subject: [PATCH] Don't pass IV to pycrypto when using MODE_CTR |
|
| 5 |
- |
|
| 6 |
-* Fixes #713 |
|
| 7 |
- paramiko/transport.py | 2 +- |
|
| 8 |
- 1 file changed, 1 insertion(+), 1 deletion(-) |
|
| 9 |
- |
|
| 10 |
-diff --git a/paramiko/transport.py b/paramiko/transport.py |
|
| 11 |
-index 8eaa094..b286fc5 100644 |
|
| 12 |
-+++ b/paramiko/transport.py |
|
| 13 |
-@@ -1667,7 +1667,7 @@ def _get_cipher(self, name, key, iv): |
|
| 14 |
- elif name.endswith("-ctr"):
|
|
| 15 |
- # CTR modes, we need a counter |
|
| 16 |
- counter = Counter.new(nbits=self._cipher_info[name]['block-size'] * 8, initial_value=util.inflate_long(iv, True)) |
|
| 17 |
-- return self._cipher_info[name]['class'].new(key, self._cipher_info[name]['mode'], iv, counter) |
|
| 18 |
-+ return self._cipher_info[name]['class'].new(key, self._cipher_info[name]['mode'], '', counter) |
|
| 19 |
- else: |
|
| 20 |
- return self._cipher_info[name]['class'].new(key, self._cipher_info[name]['mode'], iv) |
|
| 21 |
- |
| ... | ... |
@@ -3,7 +3,7 @@ |
| 3 | 3 |
|
| 4 | 4 |
Summary: Python SSH module |
| 5 | 5 |
Name: paramiko |
| 6 |
-Version: 1.17.3 |
|
| 6 |
+Version: 1.17.6 |
|
| 7 | 7 |
Release: 1%{?dist}
|
| 8 | 8 |
License: LGPL |
| 9 | 9 |
Group: System Environment/Security |
| ... | ... |
@@ -11,8 +11,7 @@ Vendor: VMware, Inc. |
| 11 | 11 |
Distribution: Photon |
| 12 | 12 |
URL: http://www.paramiko.org/ |
| 13 | 13 |
Source0: https://github.com/paramiko/paramiko/archive/paramiko-%{version}.tar.gz
|
| 14 |
-%define sha1 paramiko=19d4b28401c0fac2df3533bf17d89c53b0d893a4 |
|
| 15 |
-Patch0: paramiko-dont-pass-IV-in-AES-CTR-mode.patch |
|
| 14 |
+%define sha1 paramiko=976685cac8faed4269e09eaa112372cbd0d2803c |
|
| 16 | 15 |
BuildArch: noarch |
| 17 | 16 |
|
| 18 | 17 |
BuildRequires: python-setuptools |
| ... | ... |
@@ -41,7 +40,6 @@ Requires: python3-ecdsa > 0.11 |
| 41 | 41 |
Python 3 version. |
| 42 | 42 |
%prep |
| 43 | 43 |
%setup -q |
| 44 |
-%patch0 -p1 |
|
| 45 | 44 |
|
| 46 | 45 |
%build |
| 47 | 46 |
python setup.py build |
| ... | ... |
@@ -69,6 +67,8 @@ python3 setup.py install -O1 --skip-build \ |
| 69 | 69 |
%{python3_sitelib}/*
|
| 70 | 70 |
|
| 71 | 71 |
%changelog |
| 72 |
+* Thu Apr 19 2018 Xiaolin Li <xiaolinl@vmware.com> 1.17.6-1 |
|
| 73 |
+- Updated to version 1.17.6, fix CVE-2018-7750 |
|
| 72 | 74 |
* Thu Sep 07 2017 Kumar Kaushik <kaushikk@vmware.com> 1.17.3-1 |
| 73 | 75 |
- Updating to version, 1.17.3 bug # 1954210 |
| 74 | 76 |
* Sun Jul 23 2017 Divya Thaluru <dthaluru@vmware.com> 1.16.0-4 |