libssh: Update to version 0.11.3

- Update from version 0.11.2 to 0.11.3
- Update of rootfile
- Changelog
    0.11.3
	 * Security:
	   * CVE-2025-8114: Fix NULL pointer dereference after allocation failure
	   * CVE-2025-8277: Fix memory leak of ephemeral key pair during repeated
		wrong KEX
	   * Potential UAF when send() fails during key exchange
	 * Fix possible timeout during KEX if client sends authentication too early (#311)
	 * Cleanup OpenSSL PKCS#11 provider when loaded
	 * Zeroize buffers containing private key blobs during export

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/config/rootfiles/common/libssh b/config/rootfiles/common/libssh
index 77dfc71cf74111a32d41b66be3f88a49d1021afa..d0b55519fdf5ff40394521185c23ce74d9eb6775 100644 (file)
--- a/config/rootfiles/common/libssh
+++ b/config/rootfiles/common/libssh
@@ -14,5 +14,5 @@
 #usr/lib/cmake/libssh/libssh-config.cmake
 #usr/lib/libssh.so
 usr/lib/libssh.so.4
-usr/lib/libssh.so.4.10.2
+usr/lib/libssh.so.4.10.3
 #usr/lib/pkgconfig/libssh.pc

diff --git a/lfs/libssh b/lfs/libssh
index 80eaa0219d5305932ac6791262e6ed17826cb8d7..26d41dd38f9614b0322cd7327c645e78e40734a8 100644 (file)
--- a/lfs/libssh
+++ b/lfs/libssh
@@ -24,7 +24,7 @@
 
 include Config
 
-VER        = 0.11.2
+VER        = 0.11.3
 
 THISAPP    = libssh-$(VER)
 DL_FILE    = $(THISAPP).tar.xz
@@ -40,7 +40,7 @@ objects = $(DL_FILE)
 
 $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
 
-$(DL_FILE)_BLAKE2 = 7f4a97b2027e386f5bfd308b1aac1938484722d4d1bb55ce0fa2de8358bedea47955df1cb4e68679033d1a5538058422770872f2f6513a82199ff506eccfad0e
+$(DL_FILE)_BLAKE2 = 859e4af9bf6305e54175e456d153a85e678a6fc49ac184dbe09d94ab01dde42f0321f5a2ac35cf4ca9df188daab6c4bf3171dcd8a3776419a3a1a20474ccf89a
 
 install : $(TARGET)