diff options
| author | Wang Mingyu <wangmy@fujitsu.com> | 2025-07-07 17:06:35 +0800 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2025-07-08 23:40:29 -0700 |
| commit | ac8a50c92de1e70296103c6388508a9cbdf1cb01 (patch) | |
| tree | 9360f36f6b097f6ac53d2d15572845d516c3f39d /meta-python/recipes-devtools/python/python3-scikit-build-core | |
| parent | fe75dbf71f43f1c62b1e341b946a9cc4803a9ac9 (diff) | |
| download | meta-openembedded-ac8a50c92de1e70296103c6388508a9cbdf1cb01.tar.gz | |
libssh: upgrade 0.11.1 -> 0.11.2
* Security:
* CVE-2025-4877 - Write beyond bounds in binary to base64 conversion
* CVE-2025-4878 - Use of uninitialized variable in privatekey_from_file()
* CVE-2025-5318 - Likely read beyond bounds in sftp server handle management
* CVE-2025-5351 - Double free in functions exporting keys
* CVE-2025-5372 - ssh_kdf() returns a success code on certain failures
* CVE-2025-5449 - Likely read beyond bounds in sftp server message decoding
* CVE-2025-5987 - Invalid return code for chacha20 poly1305 with OpenSSL
* Compatibility
* Fixed compatibility with CPM.cmake
* Compatibility with OpenSSH 10.0
* Tests compatibility with new Dropbear releases
* Removed p11-kit remoting from the pkcs11 testsuite
* Bugfixes
* Implement missing packet filter for DH GEX
* Properly process the SSH2_MSG_DEBUG message
* Allow escaping quotes in quoted arguments to ssh configuration
* Do not fail with unknown match keywords in ssh configuration
* Process packets before selecting signature algorithm during authentication
* Do not fail hard when the SFTP status message is not sent by noncompliant
servers
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-python/recipes-devtools/python/python3-scikit-build-core')
0 files changed, 0 insertions, 0 deletions