Overview

File openssh-CVE-2021-28041-agent-double-free.patch of Package openssh-askpass-gnome

OpenBSD 6.8 errata 015, March 4, 2021:

Double free in ssh-agent(1)

Apply by doing:
    signify -Vep /etc/signify/openbsd-68-base.pub -x 015_sshagent.patch.sig \
        -m - | (cd /usr/src && patch -p0)

And then rebuild and install ssh (as well as ssh-agent)
    cd /usr/src/usr.bin/ssh
    make obj
    make clean
    make
    make install

Index: ssh-agent.c
===================================================================
RCS file: /cvs/src/usr.bin/ssh/ssh-agent.c,v
diff -u -p -u -r1.264 ssh-agent.c
--- a/ssh-agent.c	18 Sep 2020 08:16:38 -0000	1.264
+++ b/ssh-agent.c	3 Mar 2021 01:08:25 -0000
@@ -567,6 +567,7 @@ process_add_identity(SocketEntry *e)
 				goto err;
 			}
 			free(ext_name);
+			ext_name = NULL;
 			break;
 		default:
 			error("%s: Unknown constraint %d", __func__, ctype);
openSUSE Build Service is sponsored by
Places