Subject: CVS commit: pkgsrc/security/py-paramiko
From: Adam Ciarcinski
Date: 2018-03-13 19:35:29
Message id:

Log Message:
py-paramiko: updated to 2.4.1

[Bug] Ed25519 auth key decryption raised an unexpected exception when given a \ 
unicode password string (typical in python 3). Report by Theodor van Nahl and \ 
fix by Pierce Lopez.
[Bug] Add newer key classes for Ed25519 and ECDSA to paramiko.__all__ so that \ 
code introspecting that attribute, or using from paramiko import * (such as some \ 
IDEs) sees them. Thanks to @patriksevallius for the patch.
[Bug] Fix a security flaw (CVE-2018-7750) in Paramiko’s server mode (emphasis \ 
on server mode; this does not impact client use!) where authentication status \ 
was not checked before processing channel-open and other requests typically only \ 
sent after authenticating. Big thanks to Matthijs Kooijman for the report.