ELSA-2016-0465

ELSA-2016-0465 - openssh security update

Type:SECURITY
Severity:MODERATE
Release Date:2016-03-21

Description


[6.6.1p1-25 + 0.9.3-9]
- CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding (#1298741)

[6.6.1p1-24 + 0.9.3-9]
- CVE-2016-3115: missing sanitisation of input for X11 forwarding (#1317818)


Related CVEs


CVE-2016-1908
CVE-2016-3115

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) openssh-6.6.1p1-25.el7_2.src.rpm188d1020b16d3d59250d7abe516f44e3ELSA-2017-2029
openssh-6.6.1p1-25.el7_2.x86_64.rpm3d352ac4b845e1bc00e56d2f05361390ELSA-2017-2029
openssh-askpass-6.6.1p1-25.el7_2.x86_64.rpmd48f3f7b7260e5b18bcee3f645c4f936ELSA-2017-2029
openssh-clients-6.6.1p1-25.el7_2.x86_64.rpm478c310810c5258e30429c3abf037a2bELSA-2017-2029
openssh-keycat-6.6.1p1-25.el7_2.x86_64.rpm62ff844e3685cc032082f1cb9b7974d6ELSA-2017-2029
openssh-ldap-6.6.1p1-25.el7_2.x86_64.rpm4442f16c3d5ca3f12cd73d3242a0b06bELSA-2017-2029
openssh-server-6.6.1p1-25.el7_2.x86_64.rpmeb60fe748bba90557492bf19e03ba5dbELSA-2017-2029
openssh-server-sysvinit-6.6.1p1-25.el7_2.x86_64.rpmd9d06f8b6268d2abb4b9112a870d3a77ELSA-2017-2029
pam_ssh_agent_auth-0.9.3-9.25.el7_2.i686.rpm02a5c6f393ca6283a4e3ef1906afbc4cELSA-2017-2029
pam_ssh_agent_auth-0.9.3-9.25.el7_2.x86_64.rpma180630f32f5086ff598eeb2645e6c72ELSA-2017-2029



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete