ELSA-2014-1552

ULN >
Oracle Linux Errata repository >
ELSA-2014-1552

ELSA-2014-1552 - openssh security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2014-10-15

Description

[5.3p1-104]
- ignore SIGXFSZ in postauth monitor child (#1133906)

[5.3p1-103]
- don't try to generate DSA keys in the init script in FIPS mode (#1118735)

[5.3p1-102]
- ignore SIGPIPE in ssh-keyscan (#1108836)

[5.3p1-101]
- ssh-add: fix fatal exit when removing card (#1042519)

[5.3p1-100]
- fix race in backported ControlPersist patch (#953088)

[5.3p1-99.2]
- skip requesting smartcard PIN when removing keys from agent (#1042519)

[5.3p1-98]
- add possibility to autocreate only RSA key into initscript (#1111568)
- fix several issues reported by coverity

[5.3p1-97]
- x11 forwarding - be less restrictive when can't bind to one of available addresses
(#1027197)
- better fork error detection in audit patch (#1028643)
- fix openssh-5.3p1-x11.patch for non-linux platforms (#1100913)

[5.3p1-96]
- prevent a server from skipping SSHFP lookup (#1081338) CVE-2014-2653
- ignore environment variables with embedded '=' or '\0' characters CVE-2014-2532
- backport ControlPersist option (#953088)
- log when a client requests an interactive session and only sftp is allowed (#997377)
- don't try to load RSA1 host key in FIPS mode (#1009959)
- restore Linux oom_adj setting when handling SIGHUP to maintain behaviour over restart
(#1010429)
- ssh-keygen -V - relative-specified certificate expiry time should be relative to current time
(#1022459)

[5.3p1-95]
- adjust the key echange DH groups and ssh-keygen according to SP800-131A (#993580)
- log failed integrity test if /etc/system-fips exists (#1020803)
- backport ECDSA and ECDH support (#1028335)

Related CVEs

CVE-2014-2653

CVE-2014-2532

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	openssh-5.3p1-104.el6.src.rpm	b6d88d5198d06befbd986bebd754291e046cd83fc16ff056d3e80212ce736388	ELSA-2023-4428	ol6_i386_latest_archive
	openssh-5.3p1-104.el6.src.rpm	b6d88d5198d06befbd986bebd754291e046cd83fc16ff056d3e80212ce736388	ELSA-2023-4428	ol6_u6_i386_base
	openssh-5.3p1-104.el6.i686.rpm	69160f02f7fe4d9e4c31d18f49823ca08da2a8ec4b5bbcc137b65e4592f9d094	ELSA-2023-4428	ol6_i386_latest_archive
	openssh-5.3p1-104.el6.i686.rpm	69160f02f7fe4d9e4c31d18f49823ca08da2a8ec4b5bbcc137b65e4592f9d094	ELSA-2023-4428	ol6_u6_i386_base
	openssh-askpass-5.3p1-104.el6.i686.rpm	43efdc5fca47423643dde8271e6ce42ff23aa99bd00ff245b6bfc342e1e9a924	ELSA-2023-4428	ol6_i386_latest_archive
	openssh-askpass-5.3p1-104.el6.i686.rpm	43efdc5fca47423643dde8271e6ce42ff23aa99bd00ff245b6bfc342e1e9a924	ELSA-2023-4428	ol6_u6_i386_base
	openssh-clients-5.3p1-104.el6.i686.rpm	73ff21dadf85fd865c3a02bb25a7ffbd740f5c1dd7ad207949414274d55bf56f	ELSA-2023-4428	ol6_i386_latest_archive
	openssh-clients-5.3p1-104.el6.i686.rpm	73ff21dadf85fd865c3a02bb25a7ffbd740f5c1dd7ad207949414274d55bf56f	ELSA-2023-4428	ol6_u6_i386_base
	openssh-ldap-5.3p1-104.el6.i686.rpm	8803c0de08cd330ad927019635a5ae03ddd857efc47fb1f71eb2fbc33f3cd453	ELSA-2023-4428	ol6_i386_latest_archive
	openssh-ldap-5.3p1-104.el6.i686.rpm	8803c0de08cd330ad927019635a5ae03ddd857efc47fb1f71eb2fbc33f3cd453	ELSA-2023-4428	ol6_u6_i386_base
	openssh-server-5.3p1-104.el6.i686.rpm	6f8f361f8e5c0e041a581db03f8dfdecdf1cd1c3304115fc222c5b775744cf88	ELSA-2023-4428	ol6_i386_latest_archive
	openssh-server-5.3p1-104.el6.i686.rpm	6f8f361f8e5c0e041a581db03f8dfdecdf1cd1c3304115fc222c5b775744cf88	ELSA-2023-4428	ol6_u6_i386_base
	pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm	d217ad0bb7b955cadbb9b03a136add311fd27c3342d087a6751ed493abc0e3ad	ELSA-2023-4428	ol6_i386_latest_archive
	pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm	d217ad0bb7b955cadbb9b03a136add311fd27c3342d087a6751ed493abc0e3ad	ELSA-2023-4428	ol6_u6_i386_base

Oracle Linux 6 (x86_64)	openssh-5.3p1-104.el6.src.rpm	b6d88d5198d06befbd986bebd754291e046cd83fc16ff056d3e80212ce736388	ELSA-2023-4428	ol6_u6_x86_64_base
	openssh-5.3p1-104.el6.src.rpm	b6d88d5198d06befbd986bebd754291e046cd83fc16ff056d3e80212ce736388	ELSA-2023-4428	ol6_x86_64_latest_archive
	openssh-5.3p1-104.el6.x86_64.rpm	4d1fd7c9ad275710a141940e306536c64a3b47fbdfc9fc03928d21e2c6758a9c	ELSA-2023-4428	exadata_dbserver_12.1.2.1.0_x86_64_base
	openssh-5.3p1-104.el6.x86_64.rpm	4d1fd7c9ad275710a141940e306536c64a3b47fbdfc9fc03928d21e2c6758a9c	ELSA-2023-4428	ol6_u6_x86_64_base
	openssh-5.3p1-104.el6.x86_64.rpm	4d1fd7c9ad275710a141940e306536c64a3b47fbdfc9fc03928d21e2c6758a9c	ELSA-2023-4428	ol6_x86_64_latest_archive
	openssh-askpass-5.3p1-104.el6.x86_64.rpm	b445f557e559d10994c96f8f0836214b274dca01423128610308a35c8f1e8f45	ELSA-2023-4428	ol6_u6_x86_64_base
	openssh-askpass-5.3p1-104.el6.x86_64.rpm	b445f557e559d10994c96f8f0836214b274dca01423128610308a35c8f1e8f45	ELSA-2023-4428	ol6_x86_64_latest_archive
	openssh-clients-5.3p1-104.el6.x86_64.rpm	57ca99402638c10c6129cdf11242fb179d71ad4af9f65a89f2ae1de0eab8516e	ELSA-2023-4428	exadata_dbserver_12.1.2.1.0_x86_64_base
	openssh-clients-5.3p1-104.el6.x86_64.rpm	57ca99402638c10c6129cdf11242fb179d71ad4af9f65a89f2ae1de0eab8516e	ELSA-2023-4428	ol6_u6_x86_64_base
	openssh-clients-5.3p1-104.el6.x86_64.rpm	57ca99402638c10c6129cdf11242fb179d71ad4af9f65a89f2ae1de0eab8516e	ELSA-2023-4428	ol6_x86_64_latest_archive
	openssh-ldap-5.3p1-104.el6.x86_64.rpm	2bb0d32d27b6c41a5e71dd26ce85e3e7d93d2cdc4a4b4dd25b46d6165787e7cc	ELSA-2023-4428	ol6_u6_x86_64_base
	openssh-ldap-5.3p1-104.el6.x86_64.rpm	2bb0d32d27b6c41a5e71dd26ce85e3e7d93d2cdc4a4b4dd25b46d6165787e7cc	ELSA-2023-4428	ol6_x86_64_latest_archive
	openssh-server-5.3p1-104.el6.x86_64.rpm	ceeb5eac6be9dab7cd35801c4916b6c170c7f02a98a6c0381d6642bb29f78cc0	ELSA-2023-4428	exadata_dbserver_12.1.2.1.0_x86_64_base
	openssh-server-5.3p1-104.el6.x86_64.rpm	ceeb5eac6be9dab7cd35801c4916b6c170c7f02a98a6c0381d6642bb29f78cc0	ELSA-2023-4428	ol6_u6_x86_64_base
	openssh-server-5.3p1-104.el6.x86_64.rpm	ceeb5eac6be9dab7cd35801c4916b6c170c7f02a98a6c0381d6642bb29f78cc0	ELSA-2023-4428	ol6_x86_64_latest_archive
	pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm	d217ad0bb7b955cadbb9b03a136add311fd27c3342d087a6751ed493abc0e3ad	ELSA-2023-4428	ol6_u6_x86_64_base
	pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm	d217ad0bb7b955cadbb9b03a136add311fd27c3342d087a6751ed493abc0e3ad	ELSA-2023-4428	ol6_x86_64_latest_archive
	pam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm	1447da04854a459304dac10614886ae2f3d551af0809b231432c7089bda6a188	ELSA-2023-4428	ol6_u6_x86_64_base
	pam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm	1447da04854a459304dac10614886ae2f3d551af0809b231432c7089bda6a188	ELSA-2023-4428	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691