chore(deps): update dependency erlang to v26.2.1 #17

Merged

renovate merged 1 commit from renovate/erlang-26.x into main 2023-12-19 09:24:47 +13:00

Conversation 0 Commits 1 Files changed 1 +1 -1

renovate commented 2023-12-19 04:09:06 +13:00

Collaborator

Copy link

This PR contains the following updates:

Package	Update	Change
erlang	patch	26.2 -> 26.2.1

---

Release Notes

erlang/otp (erlang)

v26.2.1: OTP 26.2.1

Compare Source

Patch Package:           OTP 26.2.1
Git Tag:                 OTP-26.2.1
Date:                    2023-12-18
Trouble Report Id:       OTP-18897, OTP-18902, OTP-18903
Seq num:                
System:                  OTP
Release:                 26
Application:             erts-14.2.1, ssh-5.1.1
Predecessor:             OTP 26.2

 Check out the git tag OTP-26.2.1, and build a full OTP system
 including documentation. Apply one or more applications from this
 build as patches to your installation using the 'otp_patch_apply'
 tool. For information on install requirements, see descriptions for
 each application version below.

 ---------------------------------------------------------------------
 --- POTENTIAL INCOMPATIBILITIES -------------------------------------
 ---------------------------------------------------------------------

  OTP-18897    Application(s): ssh

               With this change (being response to CVE-2023-48795),
               ssh can negotiate "strict KEX" OpenSSH extension with
               peers supporting it; also
               'chacha20-poly1305@​openssh.com' algorithm becomes a
               less preferred cipher.

               If strict KEX availability cannot be ensured on both
               connection sides, affected encryption modes(CHACHA and
               CBC) can be disabled with standard ssh configuration.
               This will provide protection against vulnerability, but
               at a cost of affecting interoperability. See
               Configuring algorithms in SSH.

 ---------------------------------------------------------------------
 --- OTP-26.2.1 ------------------------------------------------------
 ---------------------------------------------------------------------

 --- Fixed Bugs and Malfunctions ---

  OTP-18903    Application(s): otp

               Updated copyright and license information.

 ---------------------------------------------------------------------
 --- erts-14.2.1 -----------------------------------------------------
 ---------------------------------------------------------------------

 The erts-14.2.1 application can be applied independently of other
 applications on a full OTP 26 installation.

 --- Fixed Bugs and Malfunctions ---

  OTP-18902    Application(s): erts

               Removed unnecessary PCRE source tar-ball.

 Full runtime dependencies of erts-14.2.1: kernel-9.0, sasl-3.3,
 stdlib-4.1

 ---------------------------------------------------------------------
 --- ssh-5.1.1 -------------------------------------------------------
 ---------------------------------------------------------------------

 The ssh-5.1.1 application can be applied independently of other
 applications on a full OTP 26 installation.

 --- Fixed Bugs and Malfunctions ---

  OTP-18897    Application(s): ssh

               *** POTENTIAL INCOMPATIBILITY ***

               With this change (being response to CVE-2023-48795),
               ssh can negotiate "strict KEX" OpenSSH extension with
               peers supporting it; also
               'chacha20-poly1305@​openssh.com' algorithm becomes a
               less preferred cipher.

               If strict KEX availability cannot be ensured on both
               connection sides, affected encryption modes(CHACHA and
               CBC) can be disabled with standard ssh configuration.
               This will provide protection against vulnerability, but
               at a cost of affecting interoperability. See
               Configuring algorithms in SSH.

 Full runtime dependencies of ssh-5.1.1: crypto-5.0, erts-14.0,
 kernel-9.0, public_key-1.6.1, runtime_tools-1.15.1, stdlib-5.0,
 stdlib-5.0

 ---------------------------------------------------------------------
 ---------------------------------------------------------------------
 ---------------------------------------------------------------------

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [erlang](https://github.com/erlang/otp) | patch | `26.2` -> `26.2.1` | --- ### Release Notes <details> <summary>erlang/otp (erlang)</summary> ### [`v26.2.1`](https://github.com/erlang/otp/releases/tag/OTP-26.2.1): OTP 26.2.1 [Compare Source](https://github.com/erlang/otp/compare/OTP-26.2...OTP-26.2.1) Patch Package: OTP 26.2.1 Git Tag: OTP-26.2.1 Date: 2023-12-18 Trouble Report Id: OTP-18897, OTP-18902, OTP-18903 Seq num: System: OTP Release: 26 Application: erts-14.2.1, ssh-5.1.1 Predecessor: OTP 26.2 Check out the git tag OTP-26.2.1, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below. --------------------------------------------------------------------- --- POTENTIAL INCOMPATIBILITIES ------------------------------------- --------------------------------------------------------------------- OTP-18897 Application(s): ssh With this change (being response to CVE-2023-48795), ssh can negotiate "strict KEX" OpenSSH extension with peers supporting it; also 'chacha20-poly1305@&#8203;openssh.com' algorithm becomes a less preferred cipher. If strict KEX availability cannot be ensured on both connection sides, affected encryption modes(CHACHA and CBC) can be disabled with standard ssh configuration. This will provide protection against vulnerability, but at a cost of affecting interoperability. See Configuring algorithms in SSH. --------------------------------------------------------------------- --- OTP-26.2.1 ------------------------------------------------------ --------------------------------------------------------------------- --- Fixed Bugs and Malfunctions --- OTP-18903 Application(s): otp Updated copyright and license information. --------------------------------------------------------------------- --- erts-14.2.1 ----------------------------------------------------- --------------------------------------------------------------------- The erts-14.2.1 application can be applied independently of other applications on a full OTP 26 installation. --- Fixed Bugs and Malfunctions --- OTP-18902 Application(s): erts Removed unnecessary PCRE source tar-ball. Full runtime dependencies of erts-14.2.1: kernel-9.0, sasl-3.3, stdlib-4.1 --------------------------------------------------------------------- --- ssh-5.1.1 ------------------------------------------------------- --------------------------------------------------------------------- The ssh-5.1.1 application can be applied independently of other applications on a full OTP 26 installation. --- Fixed Bugs and Malfunctions --- OTP-18897 Application(s): ssh *** POTENTIAL INCOMPATIBILITY *** With this change (being response to CVE-2023-48795), ssh can negotiate "strict KEX" OpenSSH extension with peers supporting it; also 'chacha20-poly1305@&#8203;openssh.com' algorithm becomes a less preferred cipher. If strict KEX availability cannot be ensured on both connection sides, affected encryption modes(CHACHA and CBC) can be disabled with standard ssh configuration. This will provide protection against vulnerability, but at a cost of affecting interoperability. See Configuring algorithms in SSH. Full runtime dependencies of ssh-5.1.1: crypto-5.0, erts-14.0, kernel-9.0, public_key-1.6.1, runtime_tools-1.15.1, stdlib-5.0, stdlib-5.0 --------------------------------------------------------------------- --------------------------------------------------------------------- --------------------------------------------------------------------- </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xMDIuMCIsInVwZGF0ZWRJblZlciI6IjM3LjEwMi4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->

renovate added 1 commit 2023-12-19 04:09:07 +13:00

chore(deps): update dependency erlang to v26.2.1 ab4fecc621

renovate scheduled this pull request to auto merge when all checks succeed 2023-12-19 04:09:07 +13:00

james was assigned by renovate 2023-12-19 05:09:57 +13:00

renovate merged commit ab4fecc621 into main 2023-12-19 09:24:47 +13:00

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

james

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: james/smokestack#17

No description provided.