Bug 741 - APV OpenSSH version 8.8 is vulnerable and recommended to upgrade 9.6 and later | IDBI

Review Request #535 — Created Nov. 21, 2024 and submitted Nov. 28, 2024, 10:19 a.m.

Information
Owner:	timlai
Repository:	APV10
Branch:	rel_apv_10_7, rel_apv_10_7_2
Bugs:	741
Depends On:
Reviewers
Groups:
People:	kevin.poh, tanya, weikai

Description

Upgrade OpenSSH version from 9.3p2 to 9.9p1

Testing Done


Verify root login
Verify able to SSH via Radius
Verify behavior when "admin aaa on 0 | 1"
Verify behavior when "admin aaa off"
Record fastlog when user login and logout via SSH
Verify able to login via SSH publick key
Lock user if user fail to login for 5 times
Verify "ssh source <ip> <mask> < permit |deny >" work properly
HA synconfig feature work properly

Diff:

Revision 2 (+1907 -1578)

Show changes

	branches/rel_apv_10_7/tools/ustack.spec
	branches/rel_apv_10_7/usr/click/bin/openssh/CVE-2023-48795-mitigation.patch
	branches/rel_apv_10_7/usr/click/bin/openssh/Makefile
	branches/rel_apv_10_7/usr/click/bin/openssh/array.patch
	branches/rel_apv_10_7/usr/click/bin/openssh/array_patch
	branches/rel_apv_10_7/usr/click/bin/openssh/build.sh
	branches/rel_apv_10_7/usr/click/bin/openssh/log_user_login_failure.patch
	branches/rel_apv_10_7/usr/click/bin/openssh/openssh-9.3p2.tar.gz
	5 more

Ship it!

```
Ship It!
```

Ship it!

```
Ship It!
```

You have a pending review.

Review Board 5.0.5

Bug 741 - APV OpenSSH version 8.8 is vulnerable and recommended to upgrade 9.6 and later | IDBI

Diff:

Status: Closed (submitted)