Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Need fix for CVE-2024-6409 #1542

Closed
RicMackie opened this issue Sep 16, 2024 · 2 comments
Closed

Need fix for CVE-2024-6409 #1542

RicMackie opened this issue Sep 16, 2024 · 2 comments
Labels
advisory security advisory kind/wontfix This will not be worked on

Comments

@RicMackie
Copy link

Just looking for a timeline for a release that addresses this CVE, please.
Thank you!
@tormath1
Copy link
Contributor

Hello @RicMackie,

I checked and this CVE seems to only concern RHEL downstream patches1:

It's disappointing that this CVE states that this is a vulnerability in OpenSSH sshd, and fails to make clear that this only affects Redhat versions and users of their downstream patch.

Footnotes

  1. https://marc.info/?l=oss-security&m=172052070419128&w=2

@tormath1 tormath1 added advisory security advisory kind/wontfix This will not be worked on labels Sep 17, 2024
@github-actions github-actions bot mentioned this issue Sep 22, 2024
Closed
@dongsupark
Copy link
Member

Nothing to do, feel free to reopen if there is any remaining issue.

@github-actions github-actions bot mentioned this issue Oct 22, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
advisory security advisory kind/wontfix This will not be worked on
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@dongsupark @tormath1 @RicMackie