Loading...

XML

Word

Printable

Type: Component Upgrade
Resolution: Unresolved
Priority: Critical
Fix Version/s: 8.0 Update 7
Affects Version/s: 8.0 Update 5
Component/s: Security
Labels:
None

Blocked:
False
Blocked Reason:
None
Ready:
False
CDW devel_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.backlog.GA
Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/2251
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

SSHD 2.9.3+ addresses CVE-2023-35887. We upgraded to this SSHD component version in EAP 7.4.14+ and SSHD 2.12.0 in EAP 8.0.1, but neglected at the time to also update Elytron's SSHD dependency, which is still at SSHD 2.9.2 for Elytron 1.15.x and 2.2.x.

clones

ELY-2874 Upgrade Elytron 1.15.x and 2.2.x's SSHD dependency to 2.12.1

Pull Request Sent

is cloned by

JBEAP-29273 [8.1.0.GA] ELY-2874 - Upgrade Elytron 2.2.x's SSHD dependency to 2.12.1

is incorporated by

JBEAP-28961 (8.0.z) Upgrade Elytron from 2.2.7.Final-redhat-00001 to 2.2.8.Final-redhat-00001

relates to

JBEAP-25627 (7.4.z) Upgrade SSHD from 2.9.2.redhat-00001 to 2.9.3.redhat-00001

Closed

Assignee:: Lukas Vydra

Reporter:: Aaron Ogburn

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2025/01/27 5:58 PM

Updated:: 2025/02/10 1:37 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates