Ah, found: it https://archive.apache.org/dist/mina/KEYS
On 2024/01/14 13:02:59 "Gary D. Gregory" wrote:
> It would be nice and helpful if a VOTE email would include a link to our KEYS
> file.
>
> Gary
>
> On 2024/01/12 20:55:13 Thomas Wolf wrote:
> > On 12.01.24 14:14 , Guillaume Nodet wrote:
It would be nice and helpful if a VOTE email would include a link to our KEYS
file.
Gary
On 2024/01/12 20:55:13 Thomas Wolf wrote:
> On 12.01.24 14:14 , Guillaume Nodet wrote:
> > I've staged a candidate release for 2.12.0 at:
> > Official staging repo:
> >
tomaswolf commented on issue #453:
URL: https://github.com/apache/mina-sshd/issues/453#issuecomment-1890939340
This is a duplicate of #445. Will be fixed in Apache MINA SSHD 2.12.0, the
release is currently in the voting phase, see [mail
tomaswolf closed issue #453: Address CVE-2023-48795 (details are already public)
URL: https://github.com/apache/mina-sshd/issues/453
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific
+1
- Tested source zip file.
- ASC looks OK
- Cannot use:
shasum --check apache-sshd-2.12.0-src.zip.sha512
shasum: apache-sshd-2.12.0-src.zip.sha512: no properly formatted SHA checksum
lines found
- Eyeballing the SHA512 _looks_ OK
- 'mvn clean verify' OK on Windows 10 and OpenJDK 17:
Apache
martin-traverse opened a new issue, #453:
URL: https://github.com/apache/mina-sshd/issues/453
### Version
2.11
### Bug description
Using Apache SSHD is now causing projects to fail security scanning due to
CVE-2023-48795. Appreciate this is a much wider issue than just