Bug 14124

Summary:	[CVE21] libssh
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Vladimir Potapov <v.potapov>
Component:	Packages from Main	Assignee:	ROSA Linux Bugs <bugs>
Status:	VERIFIED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	normal
Priority:	Normal	CC:	a.proklov
Version:	All	Flags:	v.potapov: qa_verified+ v.potapov: secteam_verified? a.proklov: published+
Target Milestone:	---
Hardware:	All
OS:	Linux
URL:	CVE-2023-1667,CVE-2023-2283
Whiteboard:
Platform:	---	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Vladimir Potapov 2023-12-07 12:31:38 MSK

https://nvd.nist.gov/vuln/detail/CVE-2023-1667 medium
https://nvd.nist.gov/vuln/detail/CVE-2023-2283 medium

Comment 1 Aleksandr Proklov 2023-12-08 06:35:19 MSK

Уязвимости закрыты минорным обновлением версии

libssh	0.9.7-1

https://abf.io/build_lists/4877049
https://abf.io/build_lists/4877053 х64
https://abf.io/build_lists/4877056
https://abf.io/build_lists/4877060
https://abf.io/build_lists/4877064

Comment 2 Vladimir Potapov 2023-12-08 11:06:20 MSK

************************************
The update sent to testings

Comment 3 Vladimir Potapov 2023-12-14 18:02:54 MSK

libssh-0.9.7-1
https://abf.io/build_lists/4877049
https://abf.io/build_lists/4877053 х64
https://abf.io/build_lists/4877056
https://abf.io/build_lists/4877060
https://abf.io/build_lists/4877064
********************* Advisory *********************
CVE closed by minor update
****************************************************
QA Verified