Loading...

XML

Word

Printable

Type: Story
Resolution: Done-Errata
Priority: Normal
Fix Version/s: rhel-9.4
Affects Version/s: rhel-9.4
Component/s: openssh
Labels:
- Accepted
- CY23Q4
- Committed
- Triaged
- task-to-story

Fixed in Build:
openssh-8.7p1-35.el9
Severity:
Normal
Epic Link:
CRYPTO-11734

Pool Team:

sst_security_crypto
Sub-System Group:

ssg_security

Internal Target Milestone:
14
Story Points:
0.2
ACKs Check:

QE ack
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Sprint:
Crypto23Q4

Acceptance Criteria:

Hide

AC1) One time meanual check that openssl version check in openssh is relaxed (and fixed version of package is already in compose)

Show
AC1) One time meanual check that openssl version check in openssh is relaxed (and fixed version of package is already in compose)
Preliminary Testing:
Pass
Errata Link:
https://errata.devel.redhat.com/advisory/123283

Experience:
Architecture:

All

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

OpenSSH has a strict check for OpenSSL version. As we have vague plans to rebase OpenSSL to 3.1/3.2 in future, it's worth relaxing this requirement in OpenSSH ASAP (as it already done upstream and in Fedora).

links to

RHBA-2023:123283 openssh bug fix and enhancement update

Test Requirement (RHSEC-6572)

mentioned on

Commit - Relax OpenSSH build-time checks for OpenSSL version

Commit - Relax OpenSSH checks for OpenSSL version

Assignee:: Dmitry Belyavskiy

Reporter:: Dmitry Belyavskiy

Developer:: Dmitry Belyavskiy

QA Contact:: Miluse Bezo Konecna

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2023/09/18 3:51 PM

Updated:: 2024/04/30 10:35 AM

Resolved:: 2024/04/30 10:35 AM

Target end:: 2023/12/04

Release Date:: 2024/04/30

Details

Description

Attachments

Issue Links

Activity

People

Dates