]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1e23b80) | patch
openssh: upgrade 9.2p1 -> 9.3p1
authorSiddharth Doshi <sdoshi@mvista.com>
Mon, 27 Mar 2023 08:36:20 +0000 (14:06 +0530)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Mon, 27 Mar 2023 14:24:57 +0000 (15:24 +0100)
commitca4b4165f388a8b8bb80c120a2baef00e7e3bcac
treeadb4e4d846641ca1c6d0512d3507e62bffbfa49btree | snapshot
parent1e23b803af6991fc20e4a4e88a0ef0541399e722commit | diff
openssh: upgrade 9.2p1 -> 9.3p1

OpenSSH 9.3p1 fixes 1 HIGH level security vulnerability.

Upgrade the recipe to point to 9.3p1.

CVEs Fixed:
1) CVE-2023-28531
- ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints.

Signed-off-by: Siddharth Doshi <sdoshi@mvista.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-connectivity/openssh/openssh_9.3p1.bb [moved from meta/recipes-connectivity/openssh/openssh_9.2p1.bb with 98% similarity] diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core