[PATCH] gnu: libssh: Update to 0.10.6 [security-fixes].

Done

Details

2 participants

Jack Hill
John Kehayias

Owner: unassigned

Submitted by: Jack Hill

Severity: normal

Jack Hill wrote on 20 Dec 2023 18:47

[PATCH core-updates-frozen] gnu: libssh: Update to 0.10.6 [security-fixes].

Recipients:(address . guix-patches@gnu.org)

Message-ID:1091bb602816425b9890f58711a953005ec3da12.1703094433.git.jackhill@jackhill.us

Fixes CVE-2023-6004, CVE-2023-48795, and CVE-2023-6918.

* gnu/packages/ssh.scm (libssh): Update to 0.10.6.

Change-Id: Ie9d304d78b2629f41af9836e5c7eab5df6f26bb5

---

gnu/packages/ssh.scm | 4 ++--

1 file changed, 2 insertions(+), 2 deletions(-)

Toggle diff (26 lines)diff --git a/gnu/packages/ssh.scm b/gnu/packages/ssh.scm
index 47089b197d..79ec702ebf 100644
--- a/gnu/packages/ssh.scm
+++ b/gnu/packages/ssh.scm
@@ -132,7 +132,7 @@ (define-public hss
 (define-public libssh
   (package
     (name "libssh")
-    (version "0.10.5")
+    (version "0.10.6")
     (source (origin
               (method url-fetch)
               (uri (string-append "https://www.libssh.org/files/"
@@ -140,7 +140,7 @@ (define-public libssh
                                   "/libssh-" version ".tar.xz"))
               (sha256
                (base32
-                "0d22gq77ga24ijlgr3d1wvhfvprx61iklkb3npifxfb7ygvjy3mn"))
+                "1hcxvsb4brznxqq6cjwxkk7yv4c48w4fcwxwd8dp9wdnyncd8q8q"))
               (modules '((guix build utils)))
               (snippet
                ;; 'PATH_MAX' is undefined on GNU/Hurd; work around it.

base-commit: aa22cdd363d3b2cf64586ccee918531aa53ef365
-- 
2.41.0

Jack Hill wrote on 20 Dec 2023 18:51

[PATCH v2] gnu: libssh: Update to 0.10.6 [security-fixes].

Recipients:(address . 67938@debbugs.gnu.org)

Message-ID:1091bb602816425b9890f58711a953005ec3da12.1703094673.git.jackhill@jackhill.us

Fixes CVE-2023-6004, CVE-2023-48795, and CVE-2023-6918.

* gnu/packages/ssh.scm (libssh): Update to 0.10.6.

Change-Id: Ie9d304d78b2629f41af9836e5c7eab5df6f26bb5

---

Sending again as I put the wrong branch prefix in the fist mail.

gnu/packages/ssh.scm | 4 ++--

1 file changed, 2 insertions(+), 2 deletions(-)

Toggle diff (26 lines)diff --git a/gnu/packages/ssh.scm b/gnu/packages/ssh.scm
index 47089b197d..79ec702ebf 100644
--- a/gnu/packages/ssh.scm
+++ b/gnu/packages/ssh.scm
@@ -132,7 +132,7 @@ (define-public hss
 (define-public libssh
   (package
     (name "libssh")
-    (version "0.10.5")
+    (version "0.10.6")
     (source (origin
               (method url-fetch)
               (uri (string-append "https://www.libssh.org/files/"
@@ -140,7 +140,7 @@ (define-public libssh
                                   "/libssh-" version ".tar.xz"))
               (sha256
                (base32
-                "0d22gq77ga24ijlgr3d1wvhfvprx61iklkb3npifxfb7ygvjy3mn"))
+                "1hcxvsb4brznxqq6cjwxkk7yv4c48w4fcwxwd8dp9wdnyncd8q8q"))
               (modules '((guix build utils)))
               (snippet
                ;; 'PATH_MAX' is undefined on GNU/Hurd; work around it.

base-commit: aa22cdd363d3b2cf64586ccee918531aa53ef365
-- 
2.41.0

Jack Hill wrote on 20 Dec 2023 18:54

Fix up branch in title

Recipients:(address . control@debbugs.gnu.org)

Message-ID:alpine.DEB.2.21.2312201252500.16303@marsh.hcoop.net

retitle 67938 [PATCH] gnu: libssh: Update to 0.10.6 [security-fixes].

John Kehayias wrote on 21 Dec 2023 20:27

Re: [bug#67938] [PATCH v2] gnu: libssh: Update to 0.10.6 [security-fixes].

Recipients:(name . Jack Hill)(address . jackhill@jackhill.us)(address . 67938-done@debbugs.gnu.org)

Message-ID:87cyuzqrtx.fsf@protonmail.com

On Wed, Dec 20, 2023 at 12:51 PM, Jack Hill wrote:

Toggle quote (37 lines)> Fixes CVE-2023-6004, CVE-2023-48795, and CVE-2023-6918.
>
> * gnu/packages/ssh.scm (libssh): Update to 0.10.6.
>
> Change-Id: Ie9d304d78b2629f41af9836e5c7eab5df6f26bb5
> ---
>
> Sending again as I put the wrong branch prefix in the fist mail.
>
>  gnu/packages/ssh.scm | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/gnu/packages/ssh.scm b/gnu/packages/ssh.scm
> index 47089b197d..79ec702ebf 100644
> --- a/gnu/packages/ssh.scm
> +++ b/gnu/packages/ssh.scm
> @@ -132,7 +132,7 @@ (define-public hss
>  (define-public libssh
>    (package
>      (name "libssh")
> -    (version "0.10.5")
> +    (version "0.10.6")
>      (source (origin
>                (method url-fetch)
>                (uri (string-append "https://www.libssh.org/files/"
> @@ -140,7 +140,7 @@ (define-public libssh
>                                    "/libssh-" version ".tar.xz"))
>                (sha256
>                 (base32
> -                "0d22gq77ga24ijlgr3d1wvhfvprx61iklkb3npifxfb7ygvjy3mn"))
> +                "1hcxvsb4brznxqq6cjwxkk7yv4c48w4fcwxwd8dp9wdnyncd8q8q"))
>                (modules '((guix build utils)))
>                (snippet
>                 ;; 'PATH_MAX' is undefined on GNU/Hurd; work around it.
>
> base-commit: aa22cdd363d3b2cf64586ccee918531aa53ef365

Thanks! Pushed as 97e517a5682af0fc031a5b7b1abf6d7c6ec2b2c9.

Closed

Your comment

This issue is archived.

To comment on this conversation send an email to 67938@debbugs.gnu.org

is:open	open issues
is:done	closed issues
submitter:<who>	search issue submitter
author:<who>	search by message author
date:yesterday..now	search by issue date
mdate:3m..2d	search by message date