Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade ssh from SIG/security to fix CVE-2024-6387 #404

Merged
merged 2 commits into from
Jul 2, 2024
Merged

Upgrade ssh from SIG/security to fix CVE-2024-6387 #404

merged 2 commits into from
Jul 2, 2024

Conversation

sjpb
Copy link
Collaborator

@sjpb sjpb commented Jul 2, 2024
edited
Loading

Before:

[root@dev-control rocky]# dnf list --installed openssh*
Installed Packages
openssh.x86_64                                                                                      8.7p1-38.el9                                                                               @baseos   
openssh-askpass.x86_64                                                                              8.7p1-38.el9                                                                               @appstream
openssh-clients.x86_64                                                                              8.7p1-38.el9                                                                               @baseos   
openssh-server.x86_64                                                                               8.7p1-38.el9                                                                               @baseos

After:

[root@dev-control rocky]# dnf list --installed openssh*
Installed Packages
openssh.x86_64                                                                            8.7p1-38.el9_4.security.0.5                                                                    @security-common
openssh-askpass.x86_64                                                                    8.7p1-38.el9_4.security.0.5                                                                    @security-common
openssh-clients.x86_64                                                                    8.7p1-38.el9_4.security.0.5                                                                    @security-common
openssh-server.x86_64                                                                     8.7p1-38.el9_4.security.0.5                                                                    @security-common

@sjpb sjpb added the RL8 Run checks on RL8 image label Jul 2, 2024
@sjpb
Copy link
Collaborator Author

sjpb commented Jul 2, 2024

Image build: https://github.com/stackhpc/ansible-slurm-appliance/actions/runs/9759001780

@sjpb sjpb force-pushed the security/ssh-cve-2024-6387 branch from f5a226d to bce768c Compare July 2, 2024 10:35
@sjpb
Copy link
Collaborator Author

sjpb commented Jul 2, 2024

Image build: https://github.com/stackhpc/ansible-slurm-appliance/actions/runs/9759420552

@sjpb sjpb force-pushed the security/ssh-cve-2024-6387 branch from e6736be to 6649859 Compare July 2, 2024 13:07
@sjpb
Copy link
Collaborator Author

sjpb commented Jul 2, 2024

Image build: https://github.com/stackhpc/ansible-slurm-appliance/actions/runs/9761581338

@sjpb sjpb marked this pull request as ready for review July 2, 2024 14:20
@sjpb sjpb requested a review from a team as a code owner July 2, 2024 14:20
mkjpryor
mkjpryor approved these changes Jul 2, 2024
View reviewed changes
Copy link
Member

@mkjpryor mkjpryor left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@mkjpryor mkjpryor merged commit 9b8ff9f into main Jul 2, 2024
2 of 4 checks passed
@mkjpryor mkjpryor deleted the security/ssh-cve-2024-6387 branch July 2, 2024 15:09
MaxBed4d pushed a commit that referenced this pull request Oct 15, 2024
@sjpb @MaxBed4d
Upgrade ssh from SIG/security to fix CVE-2024-6387 (#404)
18faae4 
* upgrade ssh from SIG/security to fix CVE-2024-6387

* refactor ssh update from sig/security to work on existing fatimage
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mkjpryor mkjpryor mkjpryor approved these changes

Assignees
No one assigned
Labels
RL8 Run checks on RL8 image
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@sjpb @mkjpryor