Merge pull request #247032 from deshaw/upstream-openssh_gssapi-upgrade

openssh_gssapi: 9.0p1 -> 9.3p2
2023-08-07 23:35:42 +01:00 · 2023-08-07 23:35:42 +01:00 · 97aecb6967
parent 84465b89c3 be38b2c2b5
commit 97aecb6967
1 changed files with 3 additions and 5 deletions
--- a/pkgs/tools/networking/openssh/default.nix
+++ b/pkgs/tools/networking/openssh/default.nix
@ -3,7 +3,6 @@ let
  common = opts: callPackage (import ./common.nix opts) { };
 in
 {
-
  openssh = common rec {
    pname = "openssh";
    version = "9.3p2";
@ -59,12 +58,12 @@ in

  openssh_gssapi = common rec {
    pname = "openssh-with-gssapi";
-    version = "9.0p1";
+    version = "9.3p2";
    extraDesc = " with GSSAPI support";

    src = fetchurl {
      url = "mirror://openbsd/OpenSSH/portable/openssh-${version}.tar.gz";
-      sha256 = "12m2f9czvgmi7akp7xah6y7mrrpi280a3ksk47iwr7hy2q1475q3";
+      sha256 = "sha256-IA6+FH9ss/EB/QzfngJEKvfdyimN/9n0VoeOfMrGdug=";
    };

    extraPatches = [
@ -73,11 +72,10 @@ in
      (fetchpatch {
        name = "openssh-gssapi.patch";
        url = "https://salsa.debian.org/ssh-team/openssh/raw/debian/1%25${version}-1/debian/patches/gssapi.patch";
-        sha256 = "sha256-VG7+2dfu09nvHWuSAB6sLGMmjRCDCysl/9FR1WSF21k=";
+        sha256 = "sha256-E36jxnPcu6RTyXXb9yVBCoFIVchiOSLX7L74ng1Dmao=";
      })
    ];

    extraNativeBuildInputs = [ autoreconfHook ];
-    extraMeta.knownVulnerabilities = [ "CVE-2023-28531" ];
  };
 }