Stay Connected:

ELSA-2007-0703

ELSA-2007-0703 - openssh security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2007-11-27

Description


[3.9p1-8.RHEL4.24]
- return correct exit status on failed write on sftp batch mode (#247802)

[3.9p1-8.RHEL4.23]
- some more mem leaks fix in sftp (#240909)

[3.9p1-8.RHEL4.22]
- CVE-2007-3102 escape account name to prevent audit log injection (#248058)

[3.9p1-8.RHEL4.21]
- move pam session calls so pam_close_session is always called (#216689)
- get canonical hostname for gssapi (#216854)
- CVE-2006-5052 dont leak info about user existence with krb5 auth (#234643)
- fix some memory leaks in sftp (#240909)
- correctly kill sshd in initscript (#244655)
- close unused ends of sockets so [pam] child is always terminated (#247440)


Related CVEs


CVE-2006-5052
CVE-2007-3102

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 4 (i386) openssh-3.9p1-8.RHEL4.24.src.rpmd553c02991753b17030307b8e2ca23de55a0f0d9ec3139e0fa36eacb66f7acedELEA-2010-0511el4_i386_latest
openssh-3.9p1-8.RHEL4.24.src.rpmd553c02991753b17030307b8e2ca23de55a0f0d9ec3139e0fa36eacb66f7acedELEA-2010-0511el4_u6_i386_base
openssh-3.9p1-8.RHEL4.24.i386.rpm0c65a96e1ffad708533bef96e710d3c1262ed2e9d1ab66b2061e3284332baa73ELEA-2010-0511el4_i386_latest
openssh-3.9p1-8.RHEL4.24.i386.rpm0c65a96e1ffad708533bef96e710d3c1262ed2e9d1ab66b2061e3284332baa73ELEA-2010-0511el4_u6_i386_base
openssh-askpass-3.9p1-8.RHEL4.24.i386.rpm5febe7da8cd13c1d6293990ebc77862184508f3dc170a9edd165d464df10e25fELEA-2010-0511el4_i386_latest
openssh-askpass-3.9p1-8.RHEL4.24.i386.rpm5febe7da8cd13c1d6293990ebc77862184508f3dc170a9edd165d464df10e25fELEA-2010-0511el4_u6_i386_base
openssh-askpass-gnome-3.9p1-8.RHEL4.24.i386.rpm07a9ad043fb211025ed110d736bbf16605eaf9cb2e379b4ef2fce4e766ec73c1ELEA-2010-0511el4_i386_latest
openssh-askpass-gnome-3.9p1-8.RHEL4.24.i386.rpm07a9ad043fb211025ed110d736bbf16605eaf9cb2e379b4ef2fce4e766ec73c1ELEA-2010-0511el4_u6_i386_base
openssh-clients-3.9p1-8.RHEL4.24.i386.rpm518428914d67697b7d811c5f514fa99b078b3391ab15d19b39363b0a5baaf282ELEA-2010-0511el4_i386_latest
openssh-clients-3.9p1-8.RHEL4.24.i386.rpm518428914d67697b7d811c5f514fa99b078b3391ab15d19b39363b0a5baaf282ELEA-2010-0511el4_u6_i386_base
openssh-server-3.9p1-8.RHEL4.24.i386.rpmd23899082ba600ab67389f6ffc133867c50f7e6c65d7918dc195c90a71bb49c4ELEA-2010-0511el4_i386_latest
openssh-server-3.9p1-8.RHEL4.24.i386.rpmd23899082ba600ab67389f6ffc133867c50f7e6c65d7918dc195c90a71bb49c4ELEA-2010-0511el4_u6_i386_base
Oracle Linux 4 (ia64) openssh-3.9p1-8.RHEL4.24.src.rpmd553c02991753b17030307b8e2ca23de55a0f0d9ec3139e0fa36eacb66f7acedELEA-2010-0511el4_ia64_latest
openssh-3.9p1-8.RHEL4.24.src.rpmd553c02991753b17030307b8e2ca23de55a0f0d9ec3139e0fa36eacb66f7acedELEA-2010-0511el4_u6_ia64_base
openssh-3.9p1-8.RHEL4.24.ia64.rpmdbd475bf5ea080be3e21ce933c3e2f416fa73c0d111baf67e0e159fe606d5c3cELEA-2010-0511el4_ia64_latest
openssh-3.9p1-8.RHEL4.24.ia64.rpmdbd475bf5ea080be3e21ce933c3e2f416fa73c0d111baf67e0e159fe606d5c3cELEA-2010-0511el4_u6_ia64_base
openssh-askpass-3.9p1-8.RHEL4.24.ia64.rpm849b52be04f92330b3d07a11134c9fa3a866ef31ad9068601f7a8d085d2ecd56ELEA-2010-0511el4_ia64_latest
openssh-askpass-3.9p1-8.RHEL4.24.ia64.rpm849b52be04f92330b3d07a11134c9fa3a866ef31ad9068601f7a8d085d2ecd56ELEA-2010-0511el4_u6_ia64_base
openssh-askpass-gnome-3.9p1-8.RHEL4.24.ia64.rpmcacb3ce55c362e6d90845b8f84f66acbcbf667703b78ba8c6d0ad48bc753defaELEA-2010-0511el4_ia64_latest
openssh-askpass-gnome-3.9p1-8.RHEL4.24.ia64.rpmcacb3ce55c362e6d90845b8f84f66acbcbf667703b78ba8c6d0ad48bc753defaELEA-2010-0511el4_u6_ia64_base
openssh-clients-3.9p1-8.RHEL4.24.ia64.rpmfba2ae0053e780989e9669c962315401e8eb0998bf49f63473ddc0f3c3a7db85ELEA-2010-0511el4_ia64_latest
openssh-clients-3.9p1-8.RHEL4.24.ia64.rpmfba2ae0053e780989e9669c962315401e8eb0998bf49f63473ddc0f3c3a7db85ELEA-2010-0511el4_u6_ia64_base
openssh-server-3.9p1-8.RHEL4.24.ia64.rpm14ce4bab4d84b32a74fe33d0970913505e59962447987b85613d3cc881b407bbELEA-2010-0511el4_ia64_latest
openssh-server-3.9p1-8.RHEL4.24.ia64.rpm14ce4bab4d84b32a74fe33d0970913505e59962447987b85613d3cc881b407bbELEA-2010-0511el4_u6_ia64_base
Oracle Linux 4 (x86_64) openssh-3.9p1-8.RHEL4.24.src.rpmd553c02991753b17030307b8e2ca23de55a0f0d9ec3139e0fa36eacb66f7acedELEA-2010-0511el4_u6_x86_64_base
openssh-3.9p1-8.RHEL4.24.src.rpmd553c02991753b17030307b8e2ca23de55a0f0d9ec3139e0fa36eacb66f7acedELEA-2010-0511el4_x86_64_latest
openssh-3.9p1-8.RHEL4.24.x86_64.rpm0d17be363f0784962ac31b8c644ab05ab9e7a60a2ac265c81fc121ce2cfe7e6eELEA-2010-0511el4_u6_x86_64_base
openssh-3.9p1-8.RHEL4.24.x86_64.rpm0d17be363f0784962ac31b8c644ab05ab9e7a60a2ac265c81fc121ce2cfe7e6eELEA-2010-0511el4_x86_64_latest
openssh-askpass-3.9p1-8.RHEL4.24.x86_64.rpm4d4be6e007ee1e7ea48dabc3b310f6d145e7ceee18b7c95f8c6c7a870a6ce571ELEA-2010-0511el4_u6_x86_64_base
openssh-askpass-3.9p1-8.RHEL4.24.x86_64.rpm4d4be6e007ee1e7ea48dabc3b310f6d145e7ceee18b7c95f8c6c7a870a6ce571ELEA-2010-0511el4_x86_64_latest
openssh-askpass-gnome-3.9p1-8.RHEL4.24.x86_64.rpmcfcd945a2e45f43876547fe3b13220b24f5da1389981f988d13691c1337a165cELEA-2010-0511el4_u6_x86_64_base
openssh-askpass-gnome-3.9p1-8.RHEL4.24.x86_64.rpmcfcd945a2e45f43876547fe3b13220b24f5da1389981f988d13691c1337a165cELEA-2010-0511el4_x86_64_latest
openssh-clients-3.9p1-8.RHEL4.24.x86_64.rpm7f608f245a19f83ce414f0508072a47682a94dd02dba4285f1511a3af9ddfb3bELEA-2010-0511el4_u6_x86_64_base
openssh-clients-3.9p1-8.RHEL4.24.x86_64.rpm7f608f245a19f83ce414f0508072a47682a94dd02dba4285f1511a3af9ddfb3bELEA-2010-0511el4_x86_64_latest
openssh-server-3.9p1-8.RHEL4.24.x86_64.rpmd6306e246e16cd4b13df98246e5ae275da693b3ad1806b46e4927875c11f5f20ELEA-2010-0511el4_u6_x86_64_base
openssh-server-3.9p1-8.RHEL4.24.x86_64.rpmd6306e246e16cd4b13df98246e5ae275da693b3ad1806b46e4927875c11f5f20ELEA-2010-0511el4_x86_64_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights