From: Adolf Belka <adolf.belka@ipfire.org>
To: development@lists.ipfire.org
Cc: Adolf Belka <adolf.belka@ipfire.org>
Subject: [PATCH] libssh: Update to version 0.11.2
Date: Fri, 4 Jul 2025 12:14:36 +0200 [thread overview]
Message-ID: <20250704101446.8038-21-adolf.belka@ipfire.org> (raw)
In-Reply-To: <20250704101446.8038-1-adolf.belka@ipfire.org>
- Update from version 0.11.1 to 0.11.2
- Update of rootfile
- Changelog
0.11.2
* Security:
* CVE-2025-4877 - Write beyond bounds in binary to base64 conversion
* CVE-2025-4878 - Use of uninitialized variable in privatekey_from_file()
* CVE-2025-5318 - Likely read beyond bounds in sftp server handle management
* CVE-2025-5351 - Double free in functions exporting keys
* CVE-2025-5372 - ssh_kdf() returns a success code on certain failures
* CVE-2025-5449 - Likely read beyond bounds in sftp server message decoding
* CVE-2025-5987 - Invalid return code for chacha20 poly1305 with OpenSSL
* Compatibility
* Fixed compatibility with CPM.cmake
* Compatibility with OpenSSH 10.0
* Tests compatibility with new Dropbear releases
* Removed p11-kit remoting from the pkcs11 testsuite
* Bugfixes
* Implement missing packet filter for DH GEX
* Properly process the SSH2_MSG_DEBUG message
* Allow escaping quotes in quoted arguments to ssh configuration
* Do not fail with unknown match keywords in ssh configuration
* Process packets before selecting signature algorithm during authentication
* Do not fail hard when the SFTP status message is not sent by noncompliant
servers
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
---
config/rootfiles/common/libssh | 2 +-
lfs/libssh | 6 +++---
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/config/rootfiles/common/libssh b/config/rootfiles/common/libssh
index 5b0c59fbd..77dfc71cf 100644
--- a/config/rootfiles/common/libssh
+++ b/config/rootfiles/common/libssh
@@ -14,5 +14,5 @@
#usr/lib/cmake/libssh/libssh-config.cmake
#usr/lib/libssh.so
usr/lib/libssh.so.4
-usr/lib/libssh.so.4.10.1
+usr/lib/libssh.so.4.10.2
#usr/lib/pkgconfig/libssh.pc
diff --git a/lfs/libssh b/lfs/libssh
index d7b956aa6..80eaa0219 100644
--- a/lfs/libssh
+++ b/lfs/libssh
@@ -24,7 +24,7 @@
include Config
-VER = 0.11.1
+VER = 0.11.2
THISAPP = libssh-$(VER)
DL_FILE = $(THISAPP).tar.xz
@@ -40,7 +40,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 87079b4eaf66ceb77803b3d854f847b3f3fb6a67ac3bfa756ebcf8f06bf2b313e976044e0a1d81227fb5278fb04bc56f1a82877d14a6ee76bec0c690b14f38a7
+$(DL_FILE)_BLAKE2 = 7f4a97b2027e386f5bfd308b1aac1938484722d4d1bb55ce0fa2de8358bedea47955df1cb4e68679033d1a5538058422770872f2f6513a82199ff506eccfad0e
install : $(TARGET)
@@ -72,7 +72,7 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE)
-mkdir -pv $(DIR_APP)/build
cd $(DIR_APP)/build && cmake .. \
- -DCMAKE_INSTALL_PREFIX=/usr
+ -DCMAKE_INSTALL_PREFIX=/usr
cd $(DIR_APP)/build && make $(MAKETUNING)
cd $(DIR_APP)/build && make install
@rm -rf $(DIR_APP)
--
2.50.0
next prev parent reply other threads:[~2025-07-04 10:15 UTC|newest]
Thread overview: 31+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-07-04 10:14 [PATCH] btrfs-progs: Update to version 6.15 Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship btrfs-progs Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship fontconfig Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship jq Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship libjpeg Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship libssh Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship lvm2 Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship nettle Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship openssl Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship pango Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship pciutils Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship shadow Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship sqlite Adolf Belka
2025-07-04 10:14 ` [PATCH] core197: Ship util linux Adolf Belka
2025-07-04 10:14 ` [PATCH] fontconfig: Update to version 2.17.1 Adolf Belka
2025-07-04 10:14 ` [PATCH] freeradius: Update to version 3.2.7 Adolf Belka
2025-07-04 10:14 ` [PATCH] haproxy: Update to version 3.2.2 Adolf Belka
2025-07-04 10:14 ` [PATCH] jq: Update to version 1.8.1 Adolf Belka
2025-07-04 10:14 ` [PATCH] libjpeg: Update to version 3.1.1 Adolf Belka
2025-07-04 10:14 ` [PATCH] libpng: Update to version 1.6.50 Adolf Belka
2025-07-04 10:14 ` Adolf Belka [this message]
2025-07-04 10:14 ` [PATCH] lvm2: Update to version 2.03.33 Adolf Belka
2025-07-04 10:14 ` [PATCH] ncdu: Update to version 1.22 Adolf Belka
2025-07-04 10:14 ` [PATCH] nettle: Update to version 3.10.2 Adolf Belka
2025-07-04 10:14 ` [PATCH] openssl: Update to version 3.5.1 Adolf Belka
2025-07-04 10:14 ` [PATCH] pango: Update to version 1.56.4 Adolf Belka
2025-07-04 10:14 ` [PATCH] pciutils: Update to version 3.14.0 Adolf Belka
2025-07-04 10:14 ` [PATCH] shadow: Update to version 4.18.0 Adolf Belka
2025-07-04 10:14 ` [PATCH] sqlite: Update to version 3500200 Adolf Belka
2025-07-04 10:14 ` [PATCH] taglib: Update to version 2.1.1 Adolf Belka
2025-07-04 10:14 ` [PATCH] util-linux: Update to version 2.41.1 Adolf Belka
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20250704101446.8038-21-adolf.belka@ipfire.org \
--to=adolf.belka@ipfire.org \
--cc=development@lists.ipfire.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox