Ubuntu
openssh package

  1. Bug #2049552
  2. Activity log

Activity log for bug #2049552

Date Who What changed Old value New value Message
2024-01-16 22:31:02 Andreas Hasenack bug added bug
2024-01-16 22:31:12 Andreas Hasenack bug added subscriber Canonical Server
2024-01-16 22:31:16 Andreas Hasenack bug added subscriber Ubuntu Server
2024-01-16 22:31:20 Andreas Hasenack openssh (Ubuntu): status New Triaged
2024-01-16 22:32:12 Andreas Hasenack description The zlib detection code seems faulty: checking for possibly buggy zlib... yes configure: error: *** zlib too old - check config.log *** Your reported zlib version has known security problems. It's possible your vendor has fixed these problems without changing the version number. If you are sure this is the case, you can disable the check by running "./configure --without-zlib-version-check". If you are in doubt, upgrade zlib to version 1.2.3 or greater. See http://www.gzip.org/zlib/ for details. | #include <stdio.h> | #include <stdlib.h> | #include <zlib.h> | | int | main (void) | { | | int a=0, b=0, c=0, d=0, n, v; | n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d); | if (n != 3 && n != 4) | exit(1); | v = a*1000000 + b*10000 + c*100 + d; | fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v); | | /* 1.1.4 is OK */ | if (a == 1 && b == 1 && c >= 4) | exit(0); | | /* 1.2.3 and up are OK */ | if (v >= 1020300) | exit(0); | | exit(2); | | ; | return 0; | } Upstream fix (untested): https://github.com/openssh/openssh-portable/commit/cb4ed12ffc332d1f72d054ed92655b5f1c38f621 The zlib detection code seems faulty: checking for possibly buggy zlib... yes configure: error: *** zlib too old - check config.log *** Your reported zlib version has known security problems. It's possible your vendor has fixed these problems without changing the version number. If you are sure this is the case, you can disable the check by running "./configure --without-zlib-version-check". If you are in doubt, upgrade zlib to version 1.2.3 or greater. See http://www.gzip.org/zlib/ for details. | #include <stdio.h> | #include <stdlib.h> | #include <zlib.h> | | int | main (void) | { | | int a=0, b=0, c=0, d=0, n, v; | n = sscanf(ZLIB_VERSION, "%d.%d.%d.%d", &a, &b, &c, &d); | if (n != 3 && n != 4) | exit(1); | v = a*1000000 + b*10000 + c*100 + d; | fprintf(stderr, "found zlib version %s (%d)\n", ZLIB_VERSION, v); | | /* 1.1.4 is OK */ | if (a == 1 && b == 1 && c >= 4) | exit(0); | | /* 1.2.3 and up are OK */ | if (v >= 1020300) | exit(0); | | exit(2); | | ; | return 0; | } Upstream bug report: https://bugzilla.mindrot.org/show_bug.cgi?id=3604 Upstream fix (untested): https://github.com/openssh/openssh-portable/commit/cb4ed12ffc332d1f72d054ed92655b5f1c38f621
2024-01-16 22:33:18 Andreas Hasenack summary noble ftbfs with new zlib 1.3 [noble] ftbfs with new zlib 1.3
2024-01-16 22:34:03 Andreas Hasenack tags ftbfs server-todo bitesize ftbfs server-todo
2024-01-17 11:10:35 Miriam España Acebal openssh (Ubuntu): assignee Miriam España Acebal (mirespace)
2024-01-17 14:45:41 Miriam España Acebal openssh (Ubuntu): status Triaged In Progress
2024-01-17 20:53:32 Launchpad Janitor merge proposal linked https://code.launchpad.net/~mirespace/ubuntu/+source/openssh/+git/openssh/+merge/458841
2024-01-18 09:03:17 Miriam España Acebal cve linked 2023-48795
2024-02-02 17:44:52 Launchpad Janitor openssh (Ubuntu): status In Progress Fix Released
2024-02-02 17:44:52 Launchpad Janitor bug watch added https://bugzilla.mindrot.org/show_bug.cgi?id=3645
2024-02-02 17:44:52 Launchpad Janitor cve linked 2023-51384
2024-02-02 17:44:52 Launchpad Janitor cve linked 2023-51385