Overview
Request 1141978 accepted
- update to 20240101 (bsc#1218197, CVE-2023-48795):
* fixed channel_forkpty() race condition between close(slave)
in parent process and login_tty(slave) in child process
* fixed behavior when using terminal mode and stdin redirected
to /dev/null 'ssh -tt -n'
* added an 'strict-key' key exchange kex-strict-
s-v00@openssh.com (Mitigates CVE-2023-48795 "Terrapin
attack")
* updated crypto/crypto_onetimeauth_poly1305.c
- Created by dirkmueller
- In state accepted
Request History
dirkmueller created request
- update to 20240101 (bsc#1218197, CVE-2023-48795):
* fixed channel_forkpty() race condition between close(slave)
in parent process and login_tty(slave) in child process
* fixed behavior when using terminal mode and stdin redirected
to /dev/null 'ssh -tt -n'
* added an 'strict-key' key exchange kex-strict-
s-v00@openssh.com (Mitigates CVE-2023-48795 "Terrapin
attack")
* updated crypto/crypto_onetimeauth_poly1305.c
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
staging-bot added openSUSE:Factory:Staging:adi:50 as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:50"
staging-bot accepted review
Picked "openSUSE:Factory:Staging:adi:50"
dimstar accepted review
anag+factory accepted review
Staging Project openSUSE:Factory:Staging:adi:50 got accepted.
anag+factory approved review
Staging Project openSUSE:Factory:Staging:adi:50 got accepted.
anag+factory accepted request
Staging Project openSUSE:Factory:Staging:adi:50 got accepted.
