Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package ssh-audit for openSUSE:Factory checked in at 2024-05-07 18:03:57 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ssh-audit (Old) and /work/SRC/openSUSE:Factory/.ssh-audit.new.1880 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ssh-audit" Tue May 7 18:03:57 2024 rev:9 rq:1172270 version:3.2.0 Changes: -------- --- /work/SRC/openSUSE:Factory/ssh-audit/ssh-audit.changes 2023-12-21 23:38:50.303030072 +0100 +++ /work/SRC/openSUSE:Factory/.ssh-audit.new.1880/ssh-audit.changes 2024-05-07 18:04:34.177050501 +0200 @@ -1,0 +2,30 @@ +Tue Apr 23 06:57:55 UTC 2024 - Martin Hauke <mar...@gmx.de> + +- Update to version 3.2.0 + * Added implementation of the DHEat denial-of-service attack + (see --dheat option; CVE-2002-20001). + * Expanded filter of CBC ciphers to flag for the Terrapin + vulnerability. It now includes more rarely found ciphers. + * Fixed parsing of ecdsa-sha2-nistp* CA signatures on host keys. + Additionally, they are now flagged as potentially + back-doored, just as standard host keys are. + * Gracefully handle rare exceptions (i.e.: crashes) while + performing GEX tests. + * Built-in policies now include a change log (use -L -v to view + them). + * Custom policies now support the + allow_algorithm_subset_and_reordering directive to allow + targets to pass with a subset and/or re-ordered list of host + keys, kex, ciphers, and MACs. This allows for the creation of + a baseline policy where targets can optionally implement + stricter controls; + * Custom policies now support the allow_larger_keys directive to + allow targets to pass with larger host keys, CA keys, and + Diffie-Hellman keys. This allows for the creation of a baseline + policy where targets can optionally implement stricter controls + * Color output is disabled if the NO_COLOR environment variable + is set (see https://no-color.org/). + * Added 1 new key exchange algorithm: gss-nistp384-sha384-*. + * Added 1 new cipher: aes128-...@libassh.org. + +------------------------------------------------------------------- Old: ---- ssh-audit-3.1.0.tar.gz ssh-audit-3.1.0.tar.gz.sig New: ---- ssh-audit-3.2.0.tar.gz ssh-audit-3.2.0.tar.gz.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ssh-audit.spec ++++++ --- /var/tmp/diff_new_pack.4uzUGt/_old 2024-05-07 18:04:34.957078865 +0200 +++ /var/tmp/diff_new_pack.4uzUGt/_new 2024-05-07 18:04:34.957078865 +0200 @@ -1,7 +1,7 @@ # # spec file for package ssh-audit # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: ssh-audit -Version: 3.1.0 +Version: 3.2.0 Release: 0 Summary: SSH server auditing License: MIT ++++++ ssh-audit-3.1.0.tar.gz -> ssh-audit-3.2.0.tar.gz ++++++ ++++ 4105 lines of diff (skipped)
