mirrors/poky - poky - zepto initiative

mirrors/poky

Fork 0

mirror of https://git.yoctoproject.org/poky synced 2026-02-08 18:02:12 +01:00

Commit Graph

Author	SHA1	Message	Date
Peter Marko	45dc2314ce	libssh2: remove status for CVE-2023-48795 Entry for this CVE was corrected in NVD DB, we no longer need to set status for it. (From OE-Core rev: 459f9ebc0695f44bc6d45f62c89f504a0bfa21ee) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2024-12-09 15:23:28 +00:00
Peter Marko	e48539a2f8	libssh2: mark CVE-2023-48795 as fixed NVD DB has typo in version (1.11.10 instead of 1.11.1) Version 1.11.1 is the currently the latest one, there is no .10 (From OE-Core rev: 92886f91dc6ed3f41771bc984aa11269bd68abe0) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2024-11-28 12:27:12 +00:00
Trevor Gamblin	3fa461da7c	libssh2: upgrade 1.11.0 -> 1.11.1 Changelog: https://github.com/libssh2/libssh2/releases/tag/libssh2-1.11.1 Patches '0001-disable-DSA-by-default.patch' and 'CVE-2023-48795.patch' were both dropped as they're included in version 1.11.1. License-Update: Copyright symbols were changed from (C) to lowercase (c) ptest results: \|root@qemux86-64:~# ptest-runner libssh2 \|START: ptest-runner \|2024-10-22T20:15 \|BEGIN: /usr/lib/libssh2/ptest \|PASS: mansyntax.sh \|PASS: test_simple \|PASS: test_sshd.test \|DURATION: 3 \|END: /usr/lib/libssh2/ptest \|2024-10-22T20:15 \|STOP: ptest-runner \|TOTAL: 1 FAIL: 0 (From OE-Core rev: bcd178082a50b81405019699d5acc3cd8273b732) Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2024-10-24 15:18:54 +01:00

Author

SHA1

Message

Date

Peter Marko

45dc2314ce

libssh2: remove status for CVE-2023-48795

Entry for this CVE was corrected in NVD DB, we no longer need to set
status for it.

(From OE-Core rev: 459f9ebc0695f44bc6d45f62c89f504a0bfa21ee)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2024-12-09 15:23:28 +00:00

Peter Marko

e48539a2f8

libssh2: mark CVE-2023-48795 as fixed

NVD DB has typo in version (1.11.10 instead of 1.11.1)
Version 1.11.1 is the currently the latest one, there is no .10

(From OE-Core rev: 92886f91dc6ed3f41771bc984aa11269bd68abe0)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2024-11-28 12:27:12 +00:00

Trevor Gamblin

3fa461da7c

libssh2: upgrade 1.11.0 -> 1.11.1

Changelog: https://github.com/libssh2/libssh2/releases/tag/libssh2-1.11.1

Patches '0001-disable-DSA-by-default.patch' and 'CVE-2023-48795.patch'
were both dropped as they're included in version 1.11.1.

License-Update: Copyright symbols were changed from (C) to lowercase (c)

ptest results:

|root@qemux86-64:~# ptest-runner libssh2
|START: ptest-runner
|2024-10-22T20:15
|BEGIN: /usr/lib/libssh2/ptest
|PASS: mansyntax.sh
|PASS: test_simple
|PASS: test_sshd.test
|DURATION: 3
|END: /usr/lib/libssh2/ptest
|2024-10-22T20:15
|STOP: ptest-runner
|TOTAL: 1 FAIL: 0

(From OE-Core rev: bcd178082a50b81405019699d5acc3cd8273b732)

Signed-off-by: Trevor Gamblin <tgamblin@baylibre.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2024-10-24 15:18:54 +01:00

3 Commits