openssh: security bump to version 7.2p2

Fixes:
CVE-2016-3115 - sanitise X11 authentication credentials to avoid xauth
command injection when X11Forwarding is enabled.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

diff --git a/package/openssh/openssh.hash b/package/openssh/openssh.hash
index 36346e072da086405a4bac37d704c415a04d69da..46d9f9be277b7fa70fd5bed6da7cf778af7d3827 100644 (file)
--- a/package/openssh/openssh.hash
+++ b/package/openssh/openssh.hash
@@ -1,3 +1,3 @@
 # Locally calculated after checking pgp signature
 # Also from http://www.openssh.com/txt/release-7.2
-sha256 973cc37b2f3597e4cf599b09e604e79c0fe5d9b6f595a24e91ed0662860b4ac3        openssh-7.2p1.tar.gz
+sha256 a72781d1a043876a224ff1b0032daa4094d87565a68528759c1c2cab5482548c        openssh-7.2p2.tar.gz

diff --git a/package/openssh/openssh.mk b/package/openssh/openssh.mk
index 0e0bcabb713e5bcb5d4e24243ef734373205c2a1..856646c0732e6951083e78c2f4279804cdc98019 100644 (file)
--- a/package/openssh/openssh.mk
+++ b/package/openssh/openssh.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-OPENSSH_VERSION = 7.2p1
+OPENSSH_VERSION = 7.2p2
 OPENSSH_SITE = http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable
 OPENSSH_LICENSE = BSD-3c BSD-2c Public Domain
 OPENSSH_LICENSE_FILES = LICENCE