FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
libssh2 Library implementing the SSH2 protocol
1.7.0,2 security on this many watch lists=28 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: sbz@FreeBSD.org search for ports maintained by this maintainer
Port Added: 22 Apr 2005 20:09:56
Also Listed In: devel
License: BSD3CLAUSE
libssh2 is a client-side C library implementing the SSH2 protocol. It supports
regular terminal, SCP and SFTP sessions; port forwarding; password, key-based
and keyboard-interactive authentication.

WWW: http://www.libssh2.org/
SVNWeb : Homepage : PortsMon

To install the port: cd /usr/ports/security/libssh2/ && make install clean
To add the package: pkg install libssh2

PKGNAME: libssh2

distinfo:

SHA256 (libssh2-1.7.0.tar.gz) = e4561fd43a50539a8c2ceb37841691baf03ecb7daf043766da1b112e4280d584
SIZE (libssh2-1.7.0.tar.gz) = 811714

This port is required by:

for Libraries * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for libssh2-1.7.0,2:
     GCRYPT=off: Use GNU crypt library instead of OpenSSL
     TRACE=off: Enable debug packet traces
     ZLIB=on: zlib compression support
===> Use 'make config' to modify these settings

USES:
libtool pathfix ssl

Master Sites:
  1. http://distcache.FreeBSD.org/local-distfiles/sbz/
  2. http://distcache.eu.FreeBSD.org/local-distfiles/sbz/
  3. http://distcache.us-east.FreeBSD.org/local-distfiles/sbz/
  4. http://distcache.us-west.FreeBSD.org/local-distfiles/sbz/
  5. http://www.libssh2.org/download/

Number of commits found: 60

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
18 Jun 2016 09:02:40
Original commit files touched by this commit  1.7.0,2
Revision:417055
mat search for other commits by this committer
Fix with GCRYPT option on.

Submitted by:	Craig Leres
Sponsored by:	Absolight
16 Jun 2016 13:23:13
Original commit files touched by this commit  1.7.0,2
Revision:416966
mat search for other commits by this committer
Fix usage of WITH_OPENSSL_BASE, WITH_OPENSSL_PORT and OPENSSL_PORT.

WITH_OPENSSL_* can't be set after bsd.port.pre.mk.
Fold all other usage into using SSL_DEFAULT == foo

PR:		210149
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	The FreeBSD Foundation, Absolight
Differential Revision:	https://reviews.freebsd.org/D6577
14 Apr 2016 00:41:35
Original commit files touched by this commit  1.7.0,2
Revision:413235
sbz search for other commits by this committer
- Update to 1.7.0
01 Apr 2016 14:25:18
Original commit files touched by this commit  1.6.0_1,2
Revision:412349
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
24 Sep 2015 18:56:31
Original commit files touched by this commit  1.6.0_1,2
Revision:397707
feld search for other commits by this committer
security/libssh2: Fix pkgconfig

Update to 1.6.0 was breaking builds of libvirt, vlc, etc.

Submitted by:	milios@ccsys.com
MFH:		2015Q3
22 Sep 2015 17:35:11
Original commit files touched by this commit  1.6.0,2
Revision:397559
feld search for other commits by this committer
security/libssh2: Update to 1.6.0

This resolves a CVE

Approved by:	ports-secteam (with hat)
MFH:		2015Q3
Security:	9770d6ac-614d-11e5-b379-14dae9d210b8
Security:	CVE-2015-1782
02 Aug 2015 15:03:20
Original commit files touched by this commit  1.4.3_6,2
Revision:393429 This port version is marked as vulnerable.
tijl search for other commits by this committer
By default libtool replaces -export-symbols <file> with -retain-symbols-file
<file> on ELF systems, but this doesn't really do what -export-symbols is
meant to do.  On GNU ELF systems it converts <file> to a simple version
script first and then uses -version-script instead of -retain-symbols-file.
Let USES=libtool patch libtool scripts to do this on all systems with GNU
ld(1).

Bump PORTREVISION on all ports where the build log contains -export-symbols.

audio/calf: This port builds a module that now exports only one function,
but it also builds a number of executables that link to this module and
expect to see other functions.  Because it's already a bit dodgy to link to
a module (libtool warns about this) let the module continue to export only
one function and instead build an ordinary library from the same source that
the executables can link to.  Fix a number of other issues in the same
(Only the first 15 lines of the commit message are shown above View all of this commit message)
02 Jan 2015 18:46:34
Original commit files touched by this commit  1.4.3_5,2
Revision:376062 This port version is marked as vulnerable.
pi search for other commits by this committer
security/libgcrypt: 1.6.1 -> 1.6.2, bump depends

Changes:
- src/sexp.c (do_vsexp_sscan): Return error for invalid args.
- cipher/md.c (_gcry_md_info): Fix a segv in case of calling
  with wrong parameters.
- cipher/primegen.c (_gcry_generate_elg_prime): Change to return an
  error code, possible NULL deref in call to prime generator.
- cipher/dsa.c (generate): Take care of new return code.
- cipher/elgamal.c (generate): Change to return an error code.  Take
	care of _gcry_generate_elg_prime return code.
- ecc: Support the non-standard 0x40 compression flag for EdDSA.
- mpi: Extend the internal mpi_get_buffer.
- mpi: Fix regression for powerpc-apple-darwin detection.
- Fix bug inhibiting the use of the sentinel attribute in src/gcrypt.h.in
(Only the first 15 lines of the commit message are shown above View all of this commit message)
28 Aug 2014 21:21:57
Original commit files touched by this commit  1.4.3_4,2
Revision:366456 This port version is marked as vulnerable.
tijl search for other commits by this committer
security/libssh2:
- Convert to USES=libtool and USES=pathfix
- Add INSTALL_TARGET=install-strip
- Only depend on openssl if GCRYPT option is off
- Sanitize libssh2.pc

devel/libvirt:
- Remove workaround for broken libssh2.pc
- Add USES=libtool and bump dependent ports
- Convert to INSTALL_TARGET=install-strip

devel/libvirt-glib:
- Convert to USES=libtool

Approved by:	portmgr (implicit, bump unstaged port)
30 Jul 2014 03:57:24
Original commit files touched by this commit  1.4.3_3,2
Revision:363436 This port version is marked as vulnerable.
pi search for other commits by this committer
security/libgcrypt: 1.5.3_3 -> 1.6.1

- Update to 1.6.1
- Remove some unneeded patches
- Fix pkg-plist
- report configure bug upstream
  https://bugs.g10code.com/gnupg/issue1668
- report API breakage downstream and find that MacPorts had the same issue
  https://rt.cpan.org/Ticket/Display.html?id=97201
- bump PORTREVISION for dependent ports (approx. 100 ports)
- Thanks to exp-run by antoine@ to find ports that break
- patch ports that would otherwise break
  security/shishi with PR 192164 is already committed
  [1] devel/ccrtp
  [2] editors/abiword
  [3] security/p5-Crypt-GCrypt

PR:		191256, 192162 [1], 192163 [2], 192166 [3]
Submitted by:	Carlos Jacobo Puga Medina <cjpugmed@gmail.com>
Approved by:	maintainer timeout, antoine (exp-run), portmgr (implicit)
07 Mar 2014 12:53:40
Original commit files touched by this commit  1.4.3_2,2
Revision:347380 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Use new OPTIONS features
- Remove useless (with staging support) maintainer target
- Fix pkgconfig file

PR:		185891
Submitted by:	amdmi3
Approved by:	maintainer timeout
21 Feb 2014 01:58:11
Original commit files touched by this commit  1.4.3_1,2
Revision:345299 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Stage support
16 Jan 2014 17:06:35
Original commit files touched by this commit  1.4.3_1,2
Revision:339935 This port version is marked as vulnerable.
rakuco search for other commits by this committer
Set LICENSE to a valid value
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.4.3_1,2
Revision:327769 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
03 May 2013 16:36:41
Original commit files touched by this commit  1.4.3_1,2
Revision:317220 This port version is marked as vulnerable.
ehaupt search for other commits by this committer
Chase security/libgcrypt update
29 Mar 2013 19:33:42
Original commit files touched by this commit  1.4.3,2
Revision:315566 This port version is marked as vulnerable.
cs search for other commits by this committer
- Remove A/An in COMMENT
- Trim Header where applicable
02 Dec 2012 17:12:51
Original commit files touched by this commit  1.4.3,2
Revision:308114 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.4.3

Feature safe:	yes
09 Oct 2012 11:14:31
Original commit files touched by this commit  1.4.2,2
Revision:305579 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Fix Makefile header
16 Jul 2012 10:47:28
Original commit files touched by this commit  1.4.2,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Convert to OptionsNG
11 Jun 2012 14:59:19
Original commit files touched by this commit  1.4.2,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.4.2
16 Apr 2012 08:38:45
Original commit files touched by this commit  1.4.1,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.4.1

Approved by:    jadawin@, miwi@ (mentors, implicit)
08 Feb 2012 06:58:34
Original commit files touched by this commit  1.4.0_1,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Fix build when using GCRYPT KNOB
- Bump PORTREVISION

PR:             ports/164835
Submitted by:   Hirohisa Yamaguchi <umq at ueo.co.jp>
Approved by:    jadawin@, miwi@ (mentors, implicit)
03 Feb 2012 18:47:02
Original commit files touched by this commit  1.4.0,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.4.0

Approved by:    jadawin@, miwi@ (mentors, implicit)
09 Nov 2011 15:26:04
Original commit files touched by this commit  1.3.0,2
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Remove WITH_FBSD10_FIX, is no longer needed
29 Oct 2011 10:03:08
Original commit files touched by this commit  1.3.0,2
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Fix build on FreeBSD 10

Reported by:    pointyhat
08 Sep 2011 13:51:46
Original commit files touched by this commit  1.3.0,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.3.0

Approved by:    jadawin@ (mentor)
18 Aug 2011 22:38:48
Original commit files touched by this commit  1.2.9,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.2.9
- Update pkg-descr
- Make happy portlint

Approved by:    miwi@ (mentor)
03 Jul 2011 11:40:49
Original commit files touched by this commit  1.2.8_2,2
 This port version is marked as vulnerable.
swills search for other commits by this committer
- Chase the libgcrypt shared lib version
29 Jun 2011 09:42:02
Original commit files touched by this commit  1.2.8_1,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Fix version of pkg-config
- Bump PORTREVISION

PR:             ports/158195
Submitted by:   mandree@
Approved by:    miwi@ (mentor)
13 Apr 2011 11:45:03
Original commit files touched by this commit  1.2.8,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
- Update to 1.2.8
- Add LICENSE

Approved by:    jadawin@ (mentor)
18 Mar 2011 10:04:54
Original commit files touched by this commit  1.2.7,2
 This port version is marked as vulnerable.
sbz search for other commits by this committer
Update my MAINTAINER address to sbz at FreeBSD.org.

Approved by:    jadawin@ (mentor)
23 Aug 2010 18:57:13
Original commit files touched by this commit  1.2.7,2
 This port version is marked as vulnerable.
jadawin search for other commits by this committer
- Update to 1.2.7

PR:             ports/149799
Submitted by:   Sofian Brabez <sbrabez _AT_ gmail.com>
27 Jul 2010 01:25:20
Original commit files touched by this commit  1.2.6_1,2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Chase security/libgcrypt shlib bump.

PR:             ports/148755
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>
14 Jun 2010 10:35:55
Original commit files touched by this commit  1.2.6,2
 This port version is marked as vulnerable.
gahr search for other commits by this committer
- Update to 1.2.6

PR:             147846
Submitted by:   Sofian Brabez <sbrabez@gmail.com> (maintainer)
16 Apr 2010 20:27:59
Original commit files touched by this commit  1.2.5,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 1.2.5 and hand maintainership to Sofian Brabez.

PR:             ports/145760
Submitted by:   sbrabez@gmail.com
22 Feb 2010 22:00:14
Original commit files touched by this commit  1.2.4,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 1.2.4.

PR:             ports/144202
Submitted by:   Sofian Brabez <sbrabez@gmail.com>
Feature safe:   yes
08 Feb 2010 21:16:33
Original commit files touched by this commit  1.2.3,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 1.2.3.

PR:             ports/143542
Submitted by:   Sofian Brabez
08 Dec 2009 09:56:12
Original commit files touched by this commit  1.2.2,2
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Add TRACE and ZLIB options

PR:             ports/140711
Submitted by:   Sofian Brabez <sbrabez@gmail.com>
Approved by:    maintainer timeout (lx; 18 days)
19 Nov 2009 19:59:42
Original commit files touched by this commit  1.2.2,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 1.2.2.

PR:             ports/140626
Submitted by: David Naylor
Feature safe:   yes
06 Oct 2009 23:03:17
Original commit files touched by this commit  1.2.1,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Remove @dirrmtry for libdata/pkgconfig directory. This directory is in
BSD.local.dist.

Submitted by:   QAT
Feature safe:   yes
06 Oct 2009 21:38:18
Original commit files touched by this commit  1.2.1,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Support libgcrypt, and update to 1.2.1, a bugfix release.

PR:             ports/138473
Submitted by:   Peter Wullinger
Feature safe:   yes
17 Aug 2009 22:57:47
Original commit files touched by this commit  1.2,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 1.2.

PR:     137760
Submitted by:   Sofian Brabez
Approved by:    maintainer
03 Apr 2009 18:55:42
Original commit files touched by this commit  1.1,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 1.1.

PR:             ports/133336
Submitted by:   Sofian Brabez <sbrabez@gmail.com>
Approved by:    lx (maintainer)
02 Feb 2009 01:34:45
Original commit files touched by this commit  1.0,2
 This port version is marked as vulnerable.
lx search for other commits by this committer
Argh. So, the update notifier was wrong, and 0.2 is not a new release
(of course), but I was fooled because there's a separate project called
libssh which *did* just have a new release. 1.0 is the real update.

Pointed out by: J. Johnston
31 Jan 2009 19:29:20
Original commit files touched by this commit  0.2,1
 This port version is marked as vulnerable.
lx search for other commits by this committer
Include appropriate openssl headers.
31 Jan 2009 06:36:18
Original commit files touched by this commit  0.2,1
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 0.2.
21 Aug 2008 06:18:49
Original commit files touched by this commit  0.18
 This port version is marked as vulnerable.
rafan search for other commits by this committer
Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk
(Only the first 15 lines of the commit message are shown above View all of this commit message)
11 Dec 2007 20:18:21
Original commit files touched by this commit  0.18
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 0.18.
09 Aug 2007 04:16:27
Original commit files touched by this commit  0.17
 This port version is marked as vulnerable.
lx search for other commits by this committer
Update to 0.17.
23 Jul 2007 09:36:52
Original commit files touched by this commit  0.15
 This port version is marked as vulnerable.
rafan search for other commits by this committer
- Set --mandir and --infodir in CONFIGURE_ARGS if the configure script
  supports them.  This is determined by running ``configure --help'' in
  do-configure target and set the shell variable _LATE_CONFIGURE_ARGS
  which is then passed to CONFIGURE_ARGS.
- Remove --mandir and --infodir in ports' Makefile where applicable
  Few ports use REINPLACE_CMD to achieve the same effect, remove them too.
- Correct some manual pages location from PREFIX/man to MANPREFIX/man
- Define INFO_PATH where necessary
- Document that .info files are installed in a subdirectory relative to
  PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and
  subdirectory detection.

PR:             ports/111470
Approved by:    portmgr
Discussed with: stas (Mk/*), gerald (info related stuffs)
Tested by:      pointyhat exp run
08 Jul 2007 00:26:55
Original commit files touched by this commit  0.15
 This port version is marked as vulnerable.
lx search for other commits by this committer
Updating to 0.15.
07 Sep 2006 20:04:19
Original commit files touched by this commit  0.14_1
 This port version is marked as vulnerable.
ehaupt search for other commits by this committer
- Provide a patch to fix a bug in the configure script that caused the include
  and library directory flags to gcc to be wrong
- Bump PORTREVISION

PR:             102920
Submitted by:   David Thiel <lx@redundancy.redundancy.org> (maintainer)
12 Jul 2006 04:32:41
Original commit files touched by this commit  0.14
 This port version is marked as vulnerable.
clsung search for other commits by this committer
- Updating libssh2 to 0.14. Changes:
  - Plug leaks in EVP cipher init/shutdown. (Selcuk Gueney)
  - Allow socket_fd == 0 in libssh2_session_startup(). (puudeli)
  - Swap ordering of packet_add/packet-inspection to avoid inspect after
  - free. (Selcuk)
  - Swap KEX_INIT ordering, send our KEX_INIT first.
  - Add check for oportunistic KEX_INIT packets.  Burn bad guess if necessary.
  - Fix OpenSSL detection using pkg-config. (Dan Casey)

PR:             ports/100127
Submitted by:   maintainer (David Thiel)
25 May 2006 21:57:24
Original commit files touched by this commit  0.13
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Adopt

PR:             ports/97860
Submitted by:   David Thiel <lx@redundancy.redundancy.org>
02 May 2006 09:38:10
Original commit files touched by this commit  0.13
 This port version is marked as vulnerable.
clsung search for other commits by this committer
- update to 0.13
18 Nov 2005 15:29:47
Original commit files touched by this commit  0.12
 This port version is marked as vulnerable.
mnag search for other commits by this committer
Update to 0.12
Add SHA256

PR:             89239
Submitted by:   KATO Tsuguru <tkato432@yahoo.com>
13 Jul 2005 21:39:44
Original commit files touched by this commit  0.11
 This port version is marked as vulnerable.
flz search for other commits by this committer
- Update to 0.11.

PR:             ports/83401
Submitted by:   Marcus Grando <marcus@corp.grupos.com.br>
16 Jun 2005 02:24:18
Original commit files touched by this commit  0.10
 This port version is marked as vulnerable.
ahze search for other commits by this committer
- Update to 0.10

PR:             ports/82280
Submitted by:   Ports Fury
23 Apr 2005 10:34:09
Original commit files touched by this commit  0.8_1
 This port version is marked as vulnerable.
netchild search for other commits by this committer
Fix post-install target.

Noticed by:     pointyhat (via kris)
22 Apr 2005 20:09:20
Original commit files touched by this commit  0.8
 This port version is marked as vulnerable.
netchild search for other commits by this committer
libssh2 is a library implementing the SSH2 protocol as defined by
Internet Drafts: SECSH-TRANS(22), SECSH-USERAUTH(25), SECSH-CONNECTION(23),
SECSH-ARCH(20), SECSH-FILEXFER(06)*, SECSH-DHGEX(04), and SECSH-NUMBERS(10).

Number of commits found: 60

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
linux-c6-openssl*Sep 30
openssl*Sep 30
openssl-devel*Sep 30
bind9-develSep 28
bind910Sep 28
bind911Sep 28
bind99Sep 28
libresslSep 26
libressl-develSep 26
opensslSep 26
openssl-develSep 26
irssi*Sep 22
irssi*Sep 22
firefoxSep 20
firefox*Sep 20

7 vulnerabilities affecting 32 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26286
Broken 373
Deprecated 218
Ignore 637
Forbidden 0
Restricted 199
No CDROM 83
Vulnerable 61
Expired 21
Set to expire 204
Interactive 0
new 24 hours 9
new 48 hours12
new 7 days37
new fortnight67
new month125

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.