Description of the patch:
This update for eclipse-jgit, jsch fixes the following issues:
Security fix:
- CVE-2023-4759: Fixed an arbitrary file overwrite which might have occurred with a specially crafted git repository and a case-insensitive filesystem. (bsc#1215298)
Other fixes:
jsch was updated to version 0.2.9:
- Added support for various algorithms
- Migrated from
com.jcraft:jsch to com.github.mwiede:jsch fork (bsc#1211955):
- Alias to the old artifact since the new one is drop-in
replacement
- Keep the old OSGi bundle symbolic name to avoid extensive
patching of eclipse stack
- Updated to version 0.2.9:
- For the full list of changes please consult the upstream changelogs below for each version updated:
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.9
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.8
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.7
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.6
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.5
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.4
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.3
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.2
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.1
- https://github.com/mwiede/jsch/releases/tag/jsch-0.2.0
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.71
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.70
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.69
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.68
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.67
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.66
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.65
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.64
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.63
- https://github.com/mwiede/jsch/releases/tag/jsch-0.1.62
+...