From 39d23b055b6b7d9b0630295d51fd6a3d32542a3b Mon Sep 17 00:00:00 2001
From: kris <kris@FreeBSD.org>
Date: Fri, 9 Feb 2001 22:56:39 +0000
Subject: Commit fixes for the two recent security problems found by BINDVIEW
 and Core-SDI, and bump PORTREVISION.

---
 security/ssh/files/patch-ay | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 security/ssh/files/patch-ay

(limited to 'security/ssh/files/patch-ay')

diff --git a/security/ssh/files/patch-ay b/security/ssh/files/patch-ay
new file mode 100644
index 0000000..51e949e
--- /dev/null
+++ b/security/ssh/files/patch-ay
@@ -0,0 +1,20 @@
+--- rsaglue.c   1999/12/10 23:27:25     1.8
++++ rsaglue.c   2001/02/03 09:42:05
+@@ -264,7 +268,15 @@
+   mpz_clear(&aux);
+
+   if (value[0] != 0 || value[1] != 2)
+-    fatal("Bad result from rsa_private_decrypt");
++    {
++      static time_t last_kill_time = 0;
++      if (time(NULL) - last_kill_time > 60 && getppid() != 1)
++       {
++         last_kill_time = time(NULL);
++         kill(SIGALRM, getppid());
++       }
++      fatal("Bad result from rsa_private_decrypt");
++    }
+
+   for (i = 2; i < len && value[i]; i++)
+     ;
+
-- 
cgit v1.1