From 0a24402ef3cae1f4700e39f575abc944fbba1290 Mon Sep 17 00:00:00 2001
From: Aveen Ismail <aveen.ismail@yubico.com>
Date: Mon, 23 Sep 2024 14:57:41 +0200
Subject: [PATCH] YubiHSM SDK 2024.09b release

---
 content/YubiHSM2/Releases/Release_notes.adoc | 36 ++++++++++++++------
 content/YubiHSM2/Releases/index.adoc         |  4 +++
 2 files changed, 29 insertions(+), 11 deletions(-)

diff --git a/content/YubiHSM2/Releases/Release_notes.adoc b/content/YubiHSM2/Releases/Release_notes.adoc
index ff744520..538bd20b 100644
--- a/content/YubiHSM2/Releases/Release_notes.adoc
+++ b/content/YubiHSM2/Releases/Release_notes.adoc
@@ -1,5 +1,18 @@
 == Release Notes
 
+=== 2024.09b
+
+==== Content:
+
+* yubihsm-shell 2.6.0
+* yubihsm-connector 3.0.5
+* yubihsm-setup 2.3.2
+* yubihsm-ksp 2.6.0
+
+==== Improvements:
+
+* Repackaging of yubihsm-setup MSI installer
+
 === 2024.09
 
 ==== Content:
@@ -42,7 +55,8 @@
 
 ==== Improvements:
 
-* Rename yubihsm-shell installer file in the Windows release package. No binaries are effected.
+* Rename yubihsm-shell installer file in the Windows release package.
+No binaries are effected.
 
 === 2023.11
 
@@ -107,7 +121,8 @@
 * PKCS11: Improve handling of attributes
 * PKCS11: Improve debug output
 * PKCS11: Improve error handling
-* PKCS11: Change in firmware/hardware version representation. The version as reported by C_GetSlotInfo and C_GetTokenInfo will now show minor*10+patch, instead of minor*100+patch
+* PKCS11: Change in firmware/hardware version representation.
+The version as reported by C_GetSlotInfo and C_GetTokenInfo will now show minor*10+patch, instead of minor*100+patch
 * Build: Dependency updates
 * Connector: Add changelog
 * Connector: Minor code improvements
@@ -249,18 +264,15 @@
 * Shell: Honor the PEM format when returning a certificate
 * Shell: Add support for special (national) characters
 * Test: Improve testing
-* Deployment Guides: Change in YubiHSM2 Windows Deployment Guide to set the YubiHSM connector service (yhconsrv) as a
-dependency for the ADCS service (certsvc) to prevent it from starting before the YubiHSM connector service and thus
-causing the ADCS service to fail. See https://developers.yubico.com/YubiHSM2/Usage_Guides/YubiHSM_2_Windows_Deployment_Guide--Configure_YubiHSM_2_Key_Storage_Provider_for_Microsoft_Windows_Server/Install_the_YubiHSM_Tools_and_Software.html[YubiHSM2 Windows Deployment Guide].
+* Deployment Guides: Change in YubiHSM2 Windows Deployment Guide to set the YubiHSM connector service (yhconsrv) as a dependency for the ADCS service (certsvc) to prevent it from starting before the YubiHSM connector service and thus causing the ADCS service to fail.
+See https://developers.yubico.com/YubiHSM2/Usage_Guides/YubiHSM_2_Windows_Deployment_Guide--Configure_YubiHSM_2_Key_Storage_Provider_for_Microsoft_Windows_Server/Install_the_YubiHSM_Tools_and_Software.html[YubiHSM2 Windows Deployment Guide].
 
 === 2019.12
 
 ==== Bugs Fixed:
 
 * Shell: Fix Wrapping and public key PEM formatting of ED25519 keys
-* Shell: Add filtering of non-printable characters to prevent terminal control characters embedded in a label from
-being used to compromise a user using a vulnerable terminal as in CVE-2019-9535. Reported by
-Julian Biehl <julianbiehl@yahoo.de> of the CISPA Helmholtz Center for Information Security.
+* Shell: Add filtering of non-printable characters to prevent terminal control characters embedded in a label from being used to compromise a user using a vulnerable terminal as in CVE-2019-9535. Reported by Julian Biehl <julianbiehl@yahoo.de> of the CISPA Helmholtz Center for Information Security.
 
 ==== Other Improvements:
 
@@ -274,7 +286,8 @@ Julian Biehl <julianbiehl@yahoo.de> of the CISPA Helmholtz Center for Informatio
 * Library: Allow disabling link time optimization.
 * Library: Fixes and improvements to build, work and test on FreeBSD.
 * Library: Ensure closing the USB connection before destroying it
-* Connector: Drop gb dependency manager and move to Go modules and google/gousb. The minimum required version of golang is 1.11.x
+* Connector: Drop gb dependency manager and move to Go modules and google/gousb.
+The minimum required version of golang is 1.11.x
 * Connector: Update dependencies
 
 === 2019.03
@@ -312,7 +325,7 @@ Julian Biehl <julianbiehl@yahoo.de> of the CISPA Helmholtz Center for Informatio
 * Library: Add a feature to derive an authentication key from a password
 * Library: Add a feature to change an authentication key
 * Pkcs11: Added support for C_DeriveKey()
-* Shell: Change keepalive command to a toggle (on/off) 
+* Shell: Change keepalive command to a toggle (on/off)
 * Tests: Add support for running tests using direct USB connection
 * Documentation: Drop documentation from the code base and moved the content to Yubico's developers website (https://developers.yubico.com/YubiHSM2/)
 * All: Re-organization of file structure
@@ -361,7 +374,8 @@ Julian Biehl <julianbiehl@yahoo.de> of the CISPA Helmholtz Center for Informatio
 * Pkcs11: Accept C_SetAttributeValue() for CKA_ID and CKA_LABEL if unchanged
 * Shell: Implement decrypt-ecdh in non-interactive mode
 * Connector: On Windows use internal USB libraries instead of libusb
-* Connector: Implement Host header allow listing (Use to prevent DNS rebinding attacks in applicable environments, e.g., if there is an absolute need to use a web browser on the host where the Yubihsm2 is installed to connect to untrusted web sites on the Internet. This is not a recommended practice.)
+* Connector: Implement Host header allow listing (Use to prevent DNS rebinding attacks in applicable environments, e.g., if there is an absolute need to use a web browser on the host where the Yubihsm2 is installed to connect to untrusted web sites on the Internet.
+This is not a recommended practice.)
 
 === 1.0.1
 
diff --git a/content/YubiHSM2/Releases/index.adoc b/content/YubiHSM2/Releases/index.adoc
index 3e305aeb..0371922c 100644
--- a/content/YubiHSM2/Releases/index.adoc
+++ b/content/YubiHSM2/Releases/index.adoc
@@ -14,6 +14,10 @@ may have several releases in the meantime. Those releases are available on the i
 component's release page. There will always be a full yubihsm-sdk release if any of the individual component would
 require a security update.
 
+=== 2024.09b
+
+https://developers.yubico.com/YubiHSM2/Releases/yubihsm2-sdk-2024-09b-windows-amd64.zip[yubihsm2-sdk-2024-09b-windows-amd64.zip] (https://developers.yubico.com/YubiHSM2/Releases/yubihsm2-sdk-2024-09b-windows-amd64.zip.sig[sig]) (2024-09-23)
+
 === 2024.09
 
 https://developers.yubico.com/YubiHSM2/Releases/yubihsm2-sdk-2024-09-ubuntu2404-amd64.tar.gz[yubihsm2-sdk-2024-09-ubuntu2404-amd64.tar.gz] (https://developers.yubico.com/YubiHSM2/Releases/yubihsm2-sdk-2024-09-ubuntu2404-amd64.tar.gz.sig[sig]) (2024-09-09)