security/wiki
8
0
Fork 1
generated from sig_core/wiki-template
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: security:652f5248b7a67acf66a7b0b38a1838d365227db8
Branches Tags
security:main
security:gh-pages
security:update/cve-2024-6387
..
compare: security:408a1d9b2b6abad721b6baca3d391df18b2d1f21
Branches Tags
security:gh-pages
security:main
security:update/cve-2024-6387

No commits in common. "652f5248b7a67acf66a7b0b38a1838d365227db8" and "408a1d9b2b6abad721b6baca3d391df18b2d1f21" have entirely different histories.
652f5248b7 ... 408a1d9b2b

2 changed files with 2 additions and 13 deletions
Show stats Expand all files Collapse all files

5
docs/news.md
View file

@ -2,11 +2,6 @@
These are what we consider significant SIG/Security news items, not an exhaustive list of package updates and wiki edits.
## August 7, 2024
[openssh](packages/openssh.md) `8.7p1-38.4.el9_4.security.0.9` for EL9 is a rebase on RH's release with a CVE-2024-6409 fix,
plus a further change of our own to suppress warnings about unsupported GSSAPI on systems configured for FIPS crypto-policy.
## July 8, 2024
[openssh](packages/openssh.md) `8.7p1-38.1.el9_4.security.0.7` for EL9 adds a fix for [CVE-2024-6409](issues/CVE-2024-6409.md),

10
docs/packages/openssh.md
View file

@ -2,8 +2,8 @@
## EL9
- Version `8.7p1-38.4.el9_4.security.0.9`
- Based on `8.7p1-38.el9_4.4`
- Version `8.7p1-38.1.el9_4.security.0.7`
- Based on `8.7p1-38.el9_4.1`
### Changes summary
@ -14,12 +14,6 @@
### Change log
```
* Wed Jul 17 2024 Solar Designer <solar@openwall.com> 8.7p1-38.4.el9_4.security.0.9
- Patch the code to silently ignore GSSAPIKeyExchange when unsupported
* Wed Jul 17 2024 Solar Designer <solar@openwall.com> 8.7p1-38.4.el9_4.security.0.8
- Rebase on 8.7p1-38.4
* Mon Jul 08 2024 Solar Designer <solar@openwall.com> 8.7p1-38.1.el9_4.security.0.7
- Fix CVE-2024-6409