Message ID | 20231220092741.37794-1-christian@aperture.us |
---|---|
State | Accepted |
Headers | show |
Series | [v1,1/1] package/openssh: security bump to version 9.6p1 | expand |
>>>>> "Christian" == Christian Stewart <christian@aperture.us> writes: > OpenSSH 9.6 was released on 2023-12-18. > This release contains fixes for a newly-discovered weakness in the > SSH transport protocol (the "Terrapin" attack), a logic error relating > to constrained PKCS#11 keys in ssh-agent(1) and countermeasures for > programs that invoke ssh(1) with user or hostnames containing invalid > characters. > https://www.openssh.com/txt/release-9.6 > Signed-off-by: Christian Stewart <christian@aperture.us> Committed, thanks.
>>>>> "Peter" == Peter Korsgaard <peter@korsgaard.com> writes: >>>>> "Christian" == Christian Stewart <christian@aperture.us> writes: >> OpenSSH 9.6 was released on 2023-12-18. >> This release contains fixes for a newly-discovered weakness in the >> SSH transport protocol (the "Terrapin" attack), a logic error relating >> to constrained PKCS#11 keys in ssh-agent(1) and countermeasures for >> programs that invoke ssh(1) with user or hostnames containing invalid >> characters. >> https://www.openssh.com/txt/release-9.6 >> Signed-off-by: Christian Stewart <christian@aperture.us> > Committed, thanks. Committed to 2023.02.x and 2023.11.x, thanks.
diff --git a/package/openssh/openssh.hash b/package/openssh/openssh.hash index 4060b95e9b..618b13133d 100644 --- a/package/openssh/openssh.hash +++ b/package/openssh/openssh.hash @@ -1,4 +1,4 @@ # From https://www.openssh.com/txt/release-9.4p1 -sha256 3608fd9088db2163ceb3e600c85ab79d0de3d221e59192ea1923e23263866a85 openssh-9.4p1.tar.gz +sha256 910211c07255a8c5ad654391b40ee59800710dd8119dd5362de09385aa7a777c openssh-9.6p1.tar.gz # Locally calculated sha256 05c30446ba738934b3f1efa965b454c122ca26cc4b268e5ae6843f58ccd1b16d LICENCE diff --git a/package/openssh/openssh.mk b/package/openssh/openssh.mk index 358ef42b6e..ec9e6613b0 100644 --- a/package/openssh/openssh.mk +++ b/package/openssh/openssh.mk @@ -4,7 +4,7 @@ # ################################################################################ -OPENSSH_VERSION_MAJOR = 9.4 +OPENSSH_VERSION_MAJOR = 9.6 OPENSSH_VERSION_MINOR = p1 OPENSSH_VERSION = $(OPENSSH_VERSION_MAJOR)$(OPENSSH_VERSION_MINOR) OPENSSH_CPE_ID_VERSION = $(OPENSSH_VERSION_MAJOR)
OpenSSH 9.6 was released on 2023-12-18. This release contains fixes for a newly-discovered weakness in the SSH transport protocol (the "Terrapin" attack), a logic error relating to constrained PKCS#11 keys in ssh-agent(1) and countermeasures for programs that invoke ssh(1) with user or hostnames containing invalid characters. https://www.openssh.com/txt/release-9.6 Signed-off-by: Christian Stewart <christian@aperture.us> --- package/openssh/openssh.hash | 2 +- package/openssh/openssh.mk | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-)