These will most likely be organized by patch type (ie. IRIX, AIX, general, etc.) as more patches are submitted.
Kerberos buffer overflow
There is a possible buffer overflow with sites that compile in the
Kerberos option. A patch was posted by Tatu Ylonen on the ssh maillist.
This will be added into the next release (1.2.27) of SSH.
SGI project initialization
This is a patch that was added because the function call for
setting up the project group on IRIX machines was incorrect.
This patch will most likely be added in the next release (1.2.27) of SSH.
AFS/Kerberos 5
This is a patch that was added so you can get an AFS token when
a kerberos ticket is passed or kerberos password authentication
is used.
AFS, Kerberos v4 support
Here are Dug Song's patches to the SSH distributions to support Kerberos 4
authentication, Kerberos 4 password authentication, Kerberos 4 ~/.klogin
authorization, AFS password authentication, AFS Kerberos ticket-granting
ticket passing, AFS token passing, and AFS pts entry authorization.
Syslog open handle
This patch was added because sshd keeps an open handle on the syslog file.
So every connection made spawns off a sshd process with an open file handle.
This was discovered on IRIX machines where there is a limit on the number of
open file handles on the syslog file (152). So after 150 or so users were
connected to a machine nothing could open the syslog for logging. All this
patch does is every time something is needed to be logged it opens the syslog
and then closes it after logging.
IRIX bit mode compiling option
This is a patch that was added so that IRIX 6.* machine can be
compiled with the 32, n32, or 64 bit mode flag. SSH 1.2.26 would
always assume n32 compiles.
Static Linking
This is a patch that was added so that the binaries could be
statically linked.
[an error occurred while processing this directive]