ELSA-2013-1591
- ULN >
- Oracle Linux Errata repository >
- ELSA-2013-1591
ELSA-2013-1591 - openssh security, bug fix, and enhancement update
| Type: | SECURITY |
| Severity: | LOW |
| Release Date: | 2013-11-26 |
Description
[5.3p1-94]
- use dracut-fips package to determine if a FIPS module is installed (#1001565)
[5.3p1-93]
- use dist tag in suffixes for hmac checksum files (#1001565)
[5.3p1-92]
- use hmac_suffix for ssh{,d} hmac checksums (#1001565)
[5.3p1-91]
- fix NSS keys support (#1004763)
[5.3p1-90]
- change default value of MaxStartups - CVE-2010-5107 - #908707
- add -fips subpackages that contains the FIPS module files (#1001565)
[5.3p1-89]
- don't use SSH_FP_MD5 for fingerprints in FIPS mode (#998835)
[5.3p1-88]
- do ssh_gssapi_krb5_storecreds() twice - before and after pam sesssion (#974096)
[5.3p1-87]
- bump the minimum value of SSH_USE_STRONG_RNG to 14 according to SP800-131A (#993577)
- fixed an issue with broken 'ssh -I pkcs11' (#908038)
- abort non-subsystem sessions to forced internal sftp-server (#993509)
- reverted 'store krb5 credentials after a pam session is created (#974096)'
[5.3p1-86]
- Add support for certificate key types for users and hosts (#906872)
- Apply RFC3454 stringprep to banners when possible (#955792)
[5.3p1-85]
- fix chroot logging issue (#872169)
- change the bad key permissions error message (#880575)
- fix a race condition in ssh-agent (#896561)
- backport support for PKCS11 from openssh-5.4p1 (#908038)
- add a KexAlgorithms knob to the client and server configuration (#951704)
- fix parsing logic of ldap.conf file (#954094)
- Add HMAC-SHA2 algorithm support (#969565)
- store krb5 credentials after a pam session is created (#974096)
Related CVEs
| CVE-2010-5107 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 6 (i386) | openssh-5.3p1-94.el6.src.rpm | ce16124dc595104d01345bda5f533c00 | ELSA-2019-0711 |
| openssh-5.3p1-94.el6.i686.rpm | 7962c096003cbfc9bdf2740f99256a1a | ELSA-2019-0711 | |
| openssh-askpass-5.3p1-94.el6.i686.rpm | 44689143d8aa940c63ff5435f00a2907 | ELSA-2019-0711 | |
| openssh-clients-5.3p1-94.el6.i686.rpm | 48c2cd5d373bfc3eeda9df08657aaf6f | ELSA-2019-0711 | |
| openssh-ldap-5.3p1-94.el6.i686.rpm | 5f303dc8c0c24e40309f94b6238038bf | ELSA-2019-0711 | |
| openssh-server-5.3p1-94.el6.i686.rpm | 34375fbab12632d2f8c0d3a5b51c17c5 | ELSA-2019-0711 | |
| pam_ssh_agent_auth-0.9.3-94.el6.i686.rpm | 5fc0688cc59dcee341f14e2cbed38352 | ELSA-2019-0711 | |
| Oracle Linux 6 (x86_64) | openssh-5.3p1-94.el6.src.rpm | ce16124dc595104d01345bda5f533c00 | ELSA-2019-0711 |
| openssh-5.3p1-94.el6.x86_64.rpm | 003b90824418ee832f995b4a4b08dd34 | ELSA-2019-0711 | |
| openssh-askpass-5.3p1-94.el6.x86_64.rpm | c5e15665eaa6f1003c4439e526c206a8 | ELSA-2019-0711 | |
| openssh-clients-5.3p1-94.el6.x86_64.rpm | a8273d4053e898748a750f3a44c24d59 | ELSA-2019-0711 | |
| openssh-ldap-5.3p1-94.el6.x86_64.rpm | 928bf7933e5cba4e56de59b8933ebdb1 | ELSA-2019-0711 | |
| openssh-server-5.3p1-94.el6.x86_64.rpm | fc6240792e5ab1da5358fbcdad9e782f | ELSA-2019-0711 | |
| pam_ssh_agent_auth-0.9.3-94.el6.i686.rpm | 5fc0688cc59dcee341f14e2cbed38352 | ELSA-2019-0711 | |
| pam_ssh_agent_auth-0.9.3-94.el6.x86_64.rpm | a6512f512162a98aa436e5f934faa319 | ELSA-2019-0711 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
