GNU bug report logs - #33067
[PATCH] gnu: libssh: Update to 0.7.6 [fixes CVE-2018-10933].

Previous Next

Package: guix-patches;

Reported by: Leo Famulari <leo <at> famulari.name>

Date: Tue, 16 Oct 2018 18:23:02 UTC

Severity: normal

Tags: patch

Done: Leo Famulari <leo <at> famulari.name>

Bug is archived. No further changes may be made.

Full log

Message #13 received at submit <at> debbugs.gnu.org (full text, mbox):

From: ludo <at> gnu.org (Ludovic Courtès)
To: Leo Famulari <leo <at> famulari.name>
Cc: guix-patches <at> gnu.org
Subject: Re: [PATCH] gnu: libssh: Update to 0.7.6 [fixes CVE-2018-10933].
Date: Thu, 18 Oct 2018 01:11:12 +0200

Hi Leo,

Leo Famulari <leo <at> famulari.name> skribis:

> This update should be tested with users of guile-ssh.
>
> Also, Ludo, the bug report of the patch removed here is no longer online
> (they have a new bug tracker at <https://bugs.libssh.org/>). The patch
> doesn't apply, but since I can't read the bug report, I don't know if
> the problem is fixed upstream, or if we should adapt our patch.

The patch changes just one ‘if’ condition.  Could you check in 0.7.6 if
that condition matches what the patch changed?

I haven’t yet been able to test the change with Guile-SSH and Guix.

Thanks!

Ludo’.

This bug report was last modified 6 years and 277 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #33067 [PATCH] gnu: libssh: Update to 0.7.6 [fixes CVE-2018-10933].

GNU bug report logs - #33067
[PATCH] gnu: libssh: Update to 0.7.6 [fixes CVE-2018-10933].