* [Buildroot] [PATCH 1/1] package/tinyssh: security bump to version 20240101
@ 2024-01-01 22:02 Fabrice Fontaine
2024-01-02 8:52 ` Thomas Petazzoni via buildroot
2024-01-10 20:10 ` Peter Korsgaard
0 siblings, 2 replies; 3+ messages in thread
From: Fabrice Fontaine @ 2024-01-01 22:02 UTC (permalink / raw)
To: buildroot; +Cc: Vadim Kochan, Fabrice Fontaine
- License changed from public domain to CC0:
https://github.com/janmojzis/tinyssh/commit/39dfb96613660d67ced44cc3995a08797e6c999a
- Mitigates CVE-2023-48795:
https://github.com/advisories/GHSA-45x7-px36-x8w8
https://github.com/janmojzis/tinyssh/releases/tag/20230101
https://github.com/janmojzis/tinyssh/releases/tag/20240101
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
package/tinyssh/tinyssh.hash | 4 ++--
package/tinyssh/tinyssh.mk | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/tinyssh/tinyssh.hash b/package/tinyssh/tinyssh.hash
index 462ffb9002..bdb1504234 100644
--- a/package/tinyssh/tinyssh.hash
+++ b/package/tinyssh/tinyssh.hash
@@ -1,3 +1,3 @@
# locally computed
-sha256 234656fc8d369608eb5d0f3a26280e0e38e2e6b134cfc610b6e24bce176acd4f tinyssh-20220801.tar.gz
-sha256 b5dc19477e29f4111e1c16cd89ec0782f5a07b1a30e3bdb7c155425b81b12c46 LICENCE
+sha256 d2cd49d0e5e8bdb808d86f07f946a0cfbf2dc9a449a4b8243a82be267d852b62 tinyssh-20240101.tar.gz
+sha256 a2010f343487d3f7618affe54f789f5487602331c0a8d03f49e9a7c547cf0499 LICENCE
diff --git a/package/tinyssh/tinyssh.mk b/package/tinyssh/tinyssh.mk
index 1472f7ead1..80b6ccb850 100644
--- a/package/tinyssh/tinyssh.mk
+++ b/package/tinyssh/tinyssh.mk
@@ -4,9 +4,9 @@
#
################################################################################
-TINYSSH_VERSION = 20220801
+TINYSSH_VERSION = 20240101
TINYSSH_SITE = $(call github,janmojzis,tinyssh,$(TINYSSH_VERSION))
-TINYSSH_LICENSE = Public Domain, CC0-1.0
+TINYSSH_LICENSE = CC0-1.0
TINYSSH_LICENSE_FILES = LICENCE
define TINYSSH_BUILD_CMDS
--
2.43.0
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/tinyssh: security bump to version 20240101
2024-01-01 22:02 [Buildroot] [PATCH 1/1] package/tinyssh: security bump to version 20240101 Fabrice Fontaine
@ 2024-01-02 8:52 ` Thomas Petazzoni via buildroot
2024-01-10 20:10 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Thomas Petazzoni via buildroot @ 2024-01-02 8:52 UTC (permalink / raw)
To: Fabrice Fontaine; +Cc: Vadim Kochan, buildroot
On Mon, 1 Jan 2024 23:02:13 +0100
Fabrice Fontaine <fontaine.fabrice@gmail.com> wrote:
> - License changed from public domain to CC0:
> https://github.com/janmojzis/tinyssh/commit/39dfb96613660d67ced44cc3995a08797e6c999a
> - Mitigates CVE-2023-48795:
> https://github.com/advisories/GHSA-45x7-px36-x8w8
>
> https://github.com/janmojzis/tinyssh/releases/tag/20230101
> https://github.com/janmojzis/tinyssh/releases/tag/20240101
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
> ---
> package/tinyssh/tinyssh.hash | 4 ++--
> package/tinyssh/tinyssh.mk | 4 ++--
> 2 files changed, 4 insertions(+), 4 deletions(-)
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/tinyssh: security bump to version 20240101
2024-01-01 22:02 [Buildroot] [PATCH 1/1] package/tinyssh: security bump to version 20240101 Fabrice Fontaine
2024-01-02 8:52 ` Thomas Petazzoni via buildroot
@ 2024-01-10 20:10 ` Peter Korsgaard
1 sibling, 0 replies; 3+ messages in thread
From: Peter Korsgaard @ 2024-01-10 20:10 UTC (permalink / raw)
To: Fabrice Fontaine; +Cc: Vadim Kochan, buildroot
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:
> - License changed from public domain to CC0:
> https://github.com/janmojzis/tinyssh/commit/39dfb96613660d67ced44cc3995a08797e6c999a
> - Mitigates CVE-2023-48795:
> https://github.com/advisories/GHSA-45x7-px36-x8w8
> https://github.com/janmojzis/tinyssh/releases/tag/20230101
> https://github.com/janmojzis/tinyssh/releases/tag/20240101
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Committed to 2023.02.x and 2023.11.x, thanks.
--
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2024-01-10 20:10 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-01-01 22:02 [Buildroot] [PATCH 1/1] package/tinyssh: security bump to version 20240101 Fabrice Fontaine
2024-01-02 8:52 ` Thomas Petazzoni via buildroot
2024-01-10 20:10 ` Peter Korsgaard
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox