From 2ceb95de95aebbfffa0031f6b91d6c55d4daf414 Mon Sep 17 00:00:00 2001 From: Pierre Riteau Date: Tue, 9 Jul 2024 17:49:51 +0200 Subject: [PATCH] Update security-common for OpenSSH CVE-2024-6409 CVE-2024-6409 is fixed with openssh 8.7p1-38.1.el9_4.security.0.7 [1]. [1] https://sig-security.rocky.page/issues/CVE-2024-6409/ (cherry picked from commit 4550dc9eda891f67b799cb490e6a4befd856d2db) --- etc/kayobe/pulp-repo-versions.yml | 2 +- .../rl9-security-common-cve-2024-6409-d36de799a29c3f74.yaml | 6 ++++++ 2 files changed, 7 insertions(+), 1 deletion(-) create mode 100644 releasenotes/notes/rl9-security-common-cve-2024-6409-d36de799a29c3f74.yaml diff --git a/etc/kayobe/pulp-repo-versions.yml b/etc/kayobe/pulp-repo-versions.yml index 4fa56a7fc..914b00fde 100644 --- a/etc/kayobe/pulp-repo-versions.yml +++ b/etc/kayobe/pulp-repo-versions.yml @@ -63,7 +63,7 @@ stackhpc_pulp_repo_rocky_9_3_baseos_version: 20231215T005810 stackhpc_pulp_repo_rocky_9_3_crb_version: 20231215T005810 stackhpc_pulp_repo_rocky_9_3_extras_version: 20231211T120328 stackhpc_pulp_repo_rocky_9_3_highavailability_version: 20231214T005538 -stackhpc_pulp_repo_rocky_9_sig_security_common_version: 20240705T092559 +stackhpc_pulp_repo_rocky_9_sig_security_common_version: 20240708T235303 stackhpc_pulp_repo_treasuredata_4_version: 20230903T003752 stackhpc_pulp_repo_ubuntu_cloud_archive_version: 20231019T125502 stackhpc_pulp_repo_ubuntu_focal_security_version: 20231018T165217 diff --git a/releasenotes/notes/rl9-security-common-cve-2024-6409-d36de799a29c3f74.yaml b/releasenotes/notes/rl9-security-common-cve-2024-6409-d36de799a29c3f74.yaml new file mode 100644 index 000000000..077f9c862 --- /dev/null +++ b/releasenotes/notes/rl9-security-common-cve-2024-6409-d36de799a29c3f74.yaml @@ -0,0 +1,6 @@ +--- +security: + - | + Updates the Rocky Linux 9 SIG Security Common repository to address + `CVE-2024-6409 `__ + in OpenSSH.