dropbear 2012.55 security =3

An SSH 2 server, designed to be usable in small memory environments
Maintained by: ak@FreeBSD.org
Port Added: 08 Sep 2003 09:10:57
Also Listed In: ipv6
License: not specified in port

---

---

Dropbear is an SSH 2 server, designed to be usable in small memory environments.
It supports: 

	* Main features of SSH 2 protocol
	* Implements X11 forwarding, and authentication-agent forwarding 
	for OpenSSH clients
	* Compatible with OpenSSH ~/.ssh/authorized_keys public key 
	authentication

WWW: http://matt.ucc.asn.au/dropbear/dropbear.html

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

NOTE: FreshPorts displays only required dependencies information. Optional dependencies are not covered.
Required To Build: devel/gmake
There are no ports dependent upon this port

---

To install the port: cd /usr/ports/security/dropbear/ && make install clean
To add the package: pkg_add -r dropbear

---

Configuration Options

===> The following configuration options are available for dropbear-2012.55:
     STATIC=off (default) "Build statically"
===> Use 'make config' to modify these settings

---

Master Sites:

http://matt.ucc.asn.au/dropbear/releases/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

Update to 2012.55
- fix arbitrary code execution (CVE-2012-0920)

Approved by:    eadler (mentor)

Update maintainer email in my ports

Approved by:    eadler (mentor)

In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.

- Fix compile if WITH_STATIC is enabled [1]
- Also pr ports/163593, which is a duplicate of this one. root@42.org [2]

PR:             ports/163217
Submitted by:   Mattia Rossi <mrossi@swin.edu.au> [1], root@42.org [2]
Approved by:    spam@rm-rf.kiev.ua (maintainer), gabor (mentor)

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

- Update to 0.53.1

PR:             ports/158027
Submitted by:   Alex Kozlov <spam@rm-rf.kiev.ua> (maintainer)

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

Remove an unneeded inclusion of <utmp.h>.

Submitted by:   Alex Kozlov <spam rm-rf kiev ua>

- Update to 0.52

PR:             129961
Submitted by:   Alex Kozlov <spam@rm-rf.kiev.ua> (maintainer)

- Update to 0.51
- Use @dirrmtry

PR:             ports/123355
Submitted by:   Alex Kozlov <spam at rm-rf.kiev.ua> (maintainer)

- Remove unneeded dependency from gtk12/gtk20 [1]
- Remove USE_XLIB/USE_X_PREFIX/USE_XPM in favor of USE_XORG
- Remove X11BASE support in favor of LOCALBASE or PREFIX
- Use USE_LDCONFIG instead of INSTALLS_SHLIB
- Remove unneeded USE_GCC 3.4+

Thanks to all Helpers:
        Dmitry Marakasov, Chess Griffin, beech@, dinoex, rafan, gahr,
        ehaupt, nox, itetcu, flz, pav

PR:             116263
Tested on:      pointyhat
Approved by:    portmgr (pav)

- Update security/dropbear to 0.50.
-Drop deprecated WANT_* knob.

PR:             ports/115475
Submitted by:   Alex Kozlov (maintainer)

- Use new world rc script

PR:             ports/111361
Approved by:    Alex Kozlov (maintainer)
Tested by:      Alex Kozlov, rafan

- Pass maintainership to Alex Kozlov.

- Update to 0.49
- OPTIONify
- Fix some documentation
- drop maintainership

PR:             ports/108785
Submitted by:   Alex Kozlov<spam@rm-rf.kiev.ua>

- Update to 0.48.1

Remove USE_REINPLACE from all categories starting with S

- Update to 0.47
- SECURITY: fix for buffer allocation error in server code, could potentially
  allow authenticated users to gain elevated privileges.

PR:             ports/90531
Submitted by:   Gea-Suan Lin <gslin@gslin.org>

- Update to 0.46

- Update to 0.44

Security fix.
- Update to 0.43
  This release fixes a DSS verification vulnerability.
  See:
 
http://www.freebsd.org/ports/portaudit/0316f983-dfb6-11d8-9b0a-000347a4fa7d.html

- SIZEify distinfo

Bump PORTREVISION on all ports that depend on gettext to aid with upgrading.

(Part 1)

- Update to 0.41

- Update to 0.40

Approved by:        erwin (mentor) (implicitly)

- Update my email address

Approved and reviewed by:    erwin (mentor)

- Update to version 0.39

PR:             60296
Submitted by:   maintainer

Update to 0.38

PR:             57866
Submitted by:   maintainer

[maintainer patch] security/dropbear: Change fetch location

        I'm rearranging the files a bit on the Dropbear site to
        avoid problems with links going away for previous versions,
        would you be able to change the source url for Dropbear to
        be the package in the http://matt.ucc.asn.au/dropbear/releases/
        directory, rather than just the /dropbear/ dir?

PR:             ports/57643
Submitted by:   Clement Laforet <sheepkiller@cultdeadsheep.org>

- Update to version 0.37

PR:             57188
Submitted by:   maintainer

[new port] security/dropbear: a lightweight SSH2 server

        Dropbear is an SSH 2 server, designed to be usable in small
        memory environments.

        It supports:
                * Main features of SSH 2 protocol
                * Implements X11 forwarding, and authentication-agent forwarding
                for OpenSSH clients
                * Compatible with OpenSSH ~/.ssh/authorized_keys public key
                authentication

        WWW: http://matt.ucc.asn.au/dropbear/dropbear.html

PR:             ports/55795
Submitted by:   Clement Laforet <sheepkiller@cultdeadsheep.org>

12 vulnerabilities affecting 17 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities