33508 – apache-sshd new security issue CVE-2024-41909

Bug 33508 - apache-sshd new security issue CVE-2024-41909

Summary: apache-sshd new security issue CVE-2024-41909

Status:	NEW

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	9
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Nicolas Lécureuil
QA Contact:	Sec team

URL:
Whiteboard:
Keywords:

Duplicates (1):	32675 (view as bug list)
Depends on:
Blocks:

Reported:	2024-09-02 11:52 CEST by Nicolas Salguero
Modified:	2025-11-14 15:32 CET (History)
CC List:	1 user (show)

See Also:
Source RPM:	apache-sshd-2.8.0-1.mga9
CVE:	CVE-2024-41909
Status comment:	Fixed upstream in 2.12.0

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Nicolas Salguero 2024-09-02 11:52:44 CEST

CVE-2024-41909 was announced here:
https://openwall.com/lists/oss-security/2024/08/12/2

Nicolas Salguero 2024-09-02 11:53:33 CEST

Status comment: (none) => Fixed upstream in 2.12.0
Source RPM: (none) => apache-sshd-2.11.0-1.mga10.src.rpm
CVE: (none) => CVE-2024-41909
Whiteboard: (none) => MGA9TOO

Comment 1 Marja Van Waes 2024-09-04 08:30:21 CEST

Assigning to the registered maintainer.

CC: (none) => marja11
Assignee: bugsquad => mageia

Comment 2 Nicolas Salguero 2025-02-10 12:09:07 CET

*** Bug 32675 has been marked as a duplicate of this bug. ***

Nicolas Salguero 2025-02-10 12:09:21 CET

Source RPM: apache-sshd-2.11.0-1.mga10.src.rpm => apache-sshd-2.11.0-1.mga10.src.rpm, apache-sshd-2.8.0-1.mga9

Nicolas Salguero 2025-11-14 15:32:25 CET

Whiteboard: MGA9TOO => (none)
Source RPM: apache-sshd-2.11.0-1.mga10.src.rpm, apache-sshd-2.8.0-1.mga9 => apache-sshd-2.8.0-1.mga9
Version: Cauldron => 9

Note You need to log in before you can comment on or make changes to this bug.