ELSA-2023-4382

ULN >
Oracle Linux Errata repository >
ELSA-2023-4382

ELSA-2023-4382 - openssh security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-08-02

Description

[7.4p1-23.0.1]
- enlarge format buffer size for certificate serial
number so the log message can record any 64-bit integer without
truncation (openssh bz#3012) [Orabug: 30448895]

[7.4p1-23 + 0.10.3-2]
- Avoid remote code execution in ssh-agent PKCS#11 support
Resolves: CVE-2023-38408

Related CVEs

CVE-2023-38408

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	openssh-7.4p1-23.0.1.el7_9.src.rpm	f9941b83c21c3a1a72e68aff4d9b0e146857c215bbd749ae7648c306b87b1851	ELSA-2024-12233	ol7_aarch64_latest
	openssh-7.4p1-23.0.1.el7_9.src.rpm	f9941b83c21c3a1a72e68aff4d9b0e146857c215bbd749ae7648c306b87b1851	ELSA-2024-12233	ol7_aarch64_optional_latest
	openssh-7.4p1-23.0.1.el7_9.src.rpm	f9941b83c21c3a1a72e68aff4d9b0e146857c215bbd749ae7648c306b87b1851	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-7.4p1-23.0.1.el7_9.aarch64.rpm	25debdf046feaeb0c526d6db010f1a472c967d129aa3b68b703564af9d722fa4	ELSA-2024-12233	ol7_aarch64_latest
	openssh-7.4p1-23.0.1.el7_9.aarch64.rpm	25debdf046feaeb0c526d6db010f1a472c967d129aa3b68b703564af9d722fa4	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-askpass-7.4p1-23.0.1.el7_9.aarch64.rpm	6b803d67587d6669c2d1879dbe3fc1663e26ef9e003603ce09fc20a0f2ba1841	ELSA-2024-12233	ol7_aarch64_latest
	openssh-askpass-7.4p1-23.0.1.el7_9.aarch64.rpm	6b803d67587d6669c2d1879dbe3fc1663e26ef9e003603ce09fc20a0f2ba1841	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-cavs-7.4p1-23.0.1.el7_9.aarch64.rpm	c4cf01946b6766f5749aafd3575e9a1a7344c19d14970e16c964d2ff902ec8fd	ELSA-2024-12233	ol7_aarch64_optional_latest
	openssh-clients-7.4p1-23.0.1.el7_9.aarch64.rpm	65895f602880faee76e0a24cb83ea49f94040c81daaac8355daac239c4a6b890	ELSA-2024-12233	ol7_aarch64_latest
	openssh-clients-7.4p1-23.0.1.el7_9.aarch64.rpm	65895f602880faee76e0a24cb83ea49f94040c81daaac8355daac239c4a6b890	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-keycat-7.4p1-23.0.1.el7_9.aarch64.rpm	65918ae709f0823bcc004e4338468f01d4cbb8243f8d0922cfaf87e432a1b4d3	ELSA-2024-12233	ol7_aarch64_latest
	openssh-keycat-7.4p1-23.0.1.el7_9.aarch64.rpm	65918ae709f0823bcc004e4338468f01d4cbb8243f8d0922cfaf87e432a1b4d3	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-ldap-7.4p1-23.0.1.el7_9.aarch64.rpm	91bb12f2079d6b629ec106867fad6c5f93fe24ac1fbf302e929477d5a546f58c	ELSA-2024-12233	ol7_aarch64_optional_latest
	openssh-server-7.4p1-23.0.1.el7_9.aarch64.rpm	ec4e26907e677cbb17023295e3f7311c932baf83a9681252f58620dc2ba22d7e	ELSA-2024-12233	ol7_aarch64_latest
	openssh-server-7.4p1-23.0.1.el7_9.aarch64.rpm	ec4e26907e677cbb17023295e3f7311c932baf83a9681252f58620dc2ba22d7e	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-server-sysvinit-7.4p1-23.0.1.el7_9.aarch64.rpm	efaaf3717c9661e6b34ecd4154fce8d970ae3c3626af4da0e83610a83c96af64	ELSA-2024-12233	ol7_aarch64_optional_latest
	pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.aarch64.rpm	543673a30dba7d1074cc24224ebdb38d09c89cb88b464c74e7f366a9fbbfb315	ELSA-2024-12233	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	openssh-7.4p1-23.0.1.el7_9.src.rpm	f9941b83c21c3a1a72e68aff4d9b0e146857c215bbd749ae7648c306b87b1851	ELSA-2024-12233	ol7_x86_64_latest
	openssh-7.4p1-23.0.1.el7_9.src.rpm	f9941b83c21c3a1a72e68aff4d9b0e146857c215bbd749ae7648c306b87b1851	ELSA-2024-12233	ol7_x86_64_optional_latest
	openssh-7.4p1-23.0.1.el7_9.src.rpm	f9941b83c21c3a1a72e68aff4d9b0e146857c215bbd749ae7648c306b87b1851	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.14.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.15.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.16.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.17.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.18.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.19.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	exadata_dbserver_22.1.20.0.0_x86_64_base
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	ol7_x86_64_latest
	openssh-7.4p1-23.0.1.el7_9.x86_64.rpm	9bc86f9497a9486bc5e7956fcfa87133c7405bc280dcfc4fd2d9d256c4e64419	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-askpass-7.4p1-23.0.1.el7_9.x86_64.rpm	a81e8f25a07981cb0744616b2c0f7d7154dacf41ad615f9197bb944e735a0dc1	ELSA-2024-12233	ol7_x86_64_latest
	openssh-askpass-7.4p1-23.0.1.el7_9.x86_64.rpm	a81e8f25a07981cb0744616b2c0f7d7154dacf41ad615f9197bb944e735a0dc1	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-cavs-7.4p1-23.0.1.el7_9.x86_64.rpm	d891e4a14ea6f0e3636867e5c0f450e718e5037d27d00548fb4dd9af8ae4c7d2	ELSA-2024-12233	ol7_x86_64_optional_latest
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.14.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.15.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.16.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.17.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.18.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.19.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	exadata_dbserver_22.1.20.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	ol7_x86_64_latest
	openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpm	992c681f82a67ff05c25e8db92db083d3fb27f8adde85a8d58bb14c98358fbdd	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-keycat-7.4p1-23.0.1.el7_9.x86_64.rpm	209b88ad77db4c3b2214e2b4a542f1256680f6df94085de4bbc567bf044cf408	ELSA-2024-12233	ol7_x86_64_latest
	openssh-keycat-7.4p1-23.0.1.el7_9.x86_64.rpm	209b88ad77db4c3b2214e2b4a542f1256680f6df94085de4bbc567bf044cf408	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-ldap-7.4p1-23.0.1.el7_9.x86_64.rpm	05410fa5c91485a01a56bc04d99b1d94bfbefcb95eda08086c522deeacc5addc	ELSA-2024-12233	ol7_x86_64_optional_latest
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.14.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.15.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.16.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.17.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.18.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.19.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	exadata_dbserver_22.1.20.0.0_x86_64_base
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	ol7_x86_64_latest
	openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpm	73e2ed14ff2653e3daf0a42329ec75dc203d9076526b602f53dc568c069e8ce2	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-server-sysvinit-7.4p1-23.0.1.el7_9.x86_64.rpm	c81b546e39ef37f6f32fcd5d3070c248cef5501cdbfc77d52d15322a85100d8c	ELSA-2024-12233	ol7_x86_64_optional_latest
	pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.i686.rpm	d3f6de09bef827b2a7069f0f31e56573d82a50cc3f89594e118878e150098a20	ELSA-2024-12233	ol7_x86_64_optional_latest
	pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.x86_64.rpm	4c02dfa9a4acc415e0929015347f7531284a4d495e739f570e26e696282c79d8	ELSA-2024-12233	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691