From 18d0924a432f4654c7b4b2560d0acfedf6cea97c Mon Sep 17 00:00:00 2001 From: Thomas Wolf Date: Fri, 12 Jan 2024 21:23:47 +0100 Subject: [ssh] Bump Apache MINA sshd 2.11.0 -> 2.12.0 This includes the upstream fix for CVE-2023-48795[1] ("strict KEX" protocol extension mitigating the "Terrapin attack"[2]) in JGit. [1] https://nvd.nist.gov/vuln/detail/CVE-2023-48795 [2] https://www.terrapin-attack.com/ Bug: jgit-16 Change-Id: Ie9aa5b903ea6795bd1511afea0bebdb537b56148 Signed-off-by: Thomas Wolf --- org.eclipse.jgit.packaging/org.eclipse.jgit.target/jgit-4.25.target | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) (limited to 'org.eclipse.jgit.packaging/org.eclipse.jgit.target/jgit-4.25.target') diff --git a/org.eclipse.jgit.packaging/org.eclipse.jgit.target/jgit-4.25.target b/org.eclipse.jgit.packaging/org.eclipse.jgit.target/jgit-4.25.target index 7cafd8c9ab..7cc53fee05 100644 --- a/org.eclipse.jgit.packaging/org.eclipse.jgit.target/jgit-4.25.target +++ b/org.eclipse.jgit.packaging/org.eclipse.jgit.target/jgit-4.25.target @@ -1,7 +1,7 @@ - + @@ -63,13 +63,13 @@ org.apache.sshd sshd-osgi - 2.11.0 + 2.12.0 jar org.apache.sshd sshd-sftp - 2.11.0 + 2.12.0 jar -- cgit v1.2.3