net-misc/openssh/files/openssh-7.9_p1-CVE-2018-20685.patch - third_party/overlays/portage-stable - Git at Google

 CVE-2018-20685

 https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2

 --- a/scp.c
 +++ b/scp.c
 @@ -1106,7 +1106,8 @@ sink(int argc, char **argv)
  			SCREWUP("size out of range");
  		size = (off_t)ull;

 -		if ((strchr(cp, '/') != NULL) || (strcmp(cp, "..") == 0)) {
 +		if (*cp == '\0' || strchr(cp, '/') != NULL ||
 +		    strcmp(cp, ".") == 0 || strcmp(cp, "..") == 0) {
  			run_err("error: unexpected filename: %s", cp);
  			exit(1);
  		}
	CVE-2018-20685

	https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2

	--- a/scp.c
	+++ b/scp.c
	@@ -1106,7 +1106,8 @@ sink(int argc, char **argv)
	SCREWUP("size out of range");
	size = (off_t)ull;

	- if ((strchr(cp, '/') != NULL) \|\| (strcmp(cp, "..") == 0)) {
	+ if (*cp == '\0' \|\| strchr(cp, '/') != NULL \|\|
	+ strcmp(cp, ".") == 0 \|\| strcmp(cp, "..") == 0) {
	run_err("error: unexpected filename: %s", cp);
	exit(1);
	}