rpms/libssh
1
0
Fork 0
Code Issues 1 Pull requests 1 Projects Releases Packages Wiki Activity Actions

libssh 0.11.4 security update for NiceOS Core #2

Open
sbelikov wants to merge 1 commit from update-libssh-0.11.4 into niceos-5.2
pull from: update-libssh-0.11.4
merge into: rpms:niceos-5.2
Conversation 0 Commits 1 Files changed 1 +10 -1
sbelikov commented 2026-05-25 00:59:40 +03:00
Owner
Copy link

Summary:

  • Update libssh from 0.11.3 to 0.11.4 on niceos-5.2.
  • Upstream describes 0.11.4 as a security release on the stable 0.11 branch.
  • Release notes call out security backports plus ProxyJump stability/compatibility improvements.

Risk assessment:

  • Overall risk: medium.
  • No upstream-documented ABI/API or SONAME change was found in the release announcement or tag summary.
  • Main regression surface is behavioral changes in SSH/SCP/SFTP/config parsing and ProxyJump handling.
  • This is still a good candidate for a security update because libssh is network-facing and security-critical.

Packaging notes:

  • Expected spec change is limited to Version/Release and changelog refresh.
  • Refresh Source0 to libssh-0.11.4.tar.xz and verify the lookaside/source checksum.
  • Rebuild and confirm the shipped shared library name still matches the existing libssh.so.4 file pattern.
  • No new BuildRequires/Requires are expected from the available upstream evidence.

Validation requested:

  • Build in mock for niceos-5.2.
  • Run package QA and check that the library SONAME, devel files, and config subpackage file lists still match.
  • Smoke-test SSH, SCP, SFTP, and ProxyJump paths.

References:

Summary: - Update libssh from 0.11.3 to 0.11.4 on niceos-5.2. - Upstream describes 0.11.4 as a security release on the stable 0.11 branch. - Release notes call out security backports plus ProxyJump stability/compatibility improvements. Risk assessment: - Overall risk: medium. - No upstream-documented ABI/API or SONAME change was found in the release announcement or tag summary. - Main regression surface is behavioral changes in SSH/SCP/SFTP/config parsing and ProxyJump handling. - This is still a good candidate for a security update because libssh is network-facing and security-critical. Packaging notes: - Expected spec change is limited to Version/Release and changelog refresh. - Refresh Source0 to libssh-0.11.4.tar.xz and verify the lookaside/source checksum. - Rebuild and confirm the shipped shared library name still matches the existing libssh.so.4 file pattern. - No new BuildRequires/Requires are expected from the available upstream evidence. Validation requested: - Build in mock for niceos-5.2. - Run package QA and check that the library SONAME, devel files, and config subpackage file lists still match. - Smoke-test SSH, SCP, SFTP, and ProxyJump paths. References: - https://www.libssh.org/2026/02/10/libssh-0-12-0-and-0-11-4-security-releases/ - https://gitlab.com/libssh/libssh-mirror/-/tags/libssh-0.11.4 - https://www.libssh.org/files/0.11/
This pull request can be merged automatically.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin update-libssh-0.11.4:update-libssh-0.11.4
git switch update-libssh-0.11.4

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch niceos-5.2
git merge --no-ff update-libssh-0.11.4
git switch update-libssh-0.11.4
git rebase niceos-5.2
git switch niceos-5.2
git merge --ff-only update-libssh-0.11.4
git switch update-libssh-0.11.4
git rebase niceos-5.2
git switch niceos-5.2
git merge --no-ff update-libssh-0.11.4
git switch niceos-5.2
git merge --squash update-libssh-0.11.4
git switch niceos-5.2
git merge --ff-only update-libssh-0.11.4
git switch niceos-5.2
git merge update-libssh-0.11.4
git push origin niceos-5.2
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
rpms/libssh!2
No description provided.