NetBSD/crypto
christos db1e653281 If PAM is configured to read user-specified environment variables
and UseLogin=yes in sshd_config, then a hostile local user may
attack /bin/login via LD_PRELOAD or similar environment variables
set via PAM.

CVE-2015-8325, found by Shayan Sadigh, via Colin Watson
https://anongit.mindrot.org/openssh.git/commit/?\
id=85bdcd7c92fe7ff133bbc4e10a65c91810f88755

XXX: pullup-7
2016-04-14 16:42:09 +00:00
..
dist/ipsec-tools CID 1356385: Add fallthrough comment 2016-03-16 21:09:39 +00:00
external If PAM is configured to read user-specified environment variables 2016-04-14 16:42:09 +00:00
Makefile.openssl Remove -I line for no longer extant directory. The OpenSSL libraries 2009-09-23 04:02:28 +00:00
TODO