From 78381779336c74b9204458ecc7ba518ff1d4ac20 Mon Sep 17 00:00:00 2001 From: Solar Designer Date: Wed, 7 Aug 2024 16:05:55 +0200 Subject: [PATCH] openssh 8.7p1-38.4.el9_4.security.0.9 --- docs/news.md | 5 +++++ docs/packages/openssh.md | 10 ++++++++-- 2 files changed, 13 insertions(+), 2 deletions(-) diff --git a/docs/news.md b/docs/news.md index 708c33b..40ec81c 100644 --- a/docs/news.md +++ b/docs/news.md @@ -2,6 +2,11 @@ These are what we consider significant SIG/Security news items, not an exhaustive list of package updates and wiki edits. +## August 7, 2024 + +[openssh](packages/openssh.md) `8.7p1-38.4.el9_4.security.0.9` for EL9 is a rebase on RH's release with a CVE-2024-6409 fix, +plus a further change of our own to suppress warnings about unsupported GSSAPI on systems configured for FIPS crypto-policy. + ## July 8, 2024 [openssh](packages/openssh.md) `8.7p1-38.1.el9_4.security.0.7` for EL9 adds a fix for [CVE-2024-6409](issues/CVE-2024-6409.md), diff --git a/docs/packages/openssh.md b/docs/packages/openssh.md index 620f6e5..c7b1360 100644 --- a/docs/packages/openssh.md +++ b/docs/packages/openssh.md @@ -2,8 +2,8 @@ ## EL9 -- Version `8.7p1-38.1.el9_4.security.0.7` -- Based on `8.7p1-38.el9_4.1` +- Version `8.7p1-38.4.el9_4.security.0.9` +- Based on `8.7p1-38.el9_4.4` ### Changes summary @@ -14,6 +14,12 @@ ### Change log ``` +* Wed Jul 17 2024 Solar Designer 8.7p1-38.4.el9_4.security.0.9 +- Patch the code to silently ignore GSSAPIKeyExchange when unsupported + +* Wed Jul 17 2024 Solar Designer 8.7p1-38.4.el9_4.security.0.8 +- Rebase on 8.7p1-38.4 + * Mon Jul 08 2024 Solar Designer 8.7p1-38.1.el9_4.security.0.7 - Fix CVE-2024-6409