[ssh_x509] PKIX-SSH release 12.5.1

ssh_x509 at roumenpetrov.info ssh_x509 at roumenpetrov.info
Sun Jun 7 17:51:16 EEST 2020


I would like to inform you that bugfix release 12.5.1 is available for download.

It contain fixes for following bugs:
* built-in chacha20-poly1305 for OpenSSL 1.1.0*
   For OpenSSL 1.1.0* releases use slow built-in chacha20-poly1305 due to regression in EVP_CipherInit(). Although regression is fixed officially in OpenSSL 1.1.0g exclude all to avoid issue with vendor releases.

* fixes for include directive in daemon configuration
   Properly process Port and Match directive.

* fix "TIME FORMATS" with multiple qualifiers
   Fix multiplier in convtime() when handling seconds after other units

* preserve group/world read permission on known hosts file
   Runs of "ssh-keygen -Rf /path" keep permission instead to remove all rights for group/other as before.

* fix off-by-one error in sftp client
   Caused sftp downloads to make one more concurrent request that desired.

Roumen Petrov

More information about the ssh_x509 mailing list