ELSA-2016-0465

ELSA-2016-0465 - openssh security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2016-03-21

Description

[6.6.1p1-25 + 0.9.3-9]
- CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding (#1298741)

[6.6.1p1-24 + 0.9.3-9]
- CVE-2016-3115: missing sanitisation of input for X11 forwarding (#1317818)

Related CVEs

CVE-2016-1908

CVE-2016-3115

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 7 (x86_64)	openssh-6.6.1p1-25.el7_2.src.rpm	188d1020b16d3d59250d7abe516f44e3	ELSA-2019-2143
	openssh-6.6.1p1-25.el7_2.x86_64.rpm	3d352ac4b845e1bc00e56d2f05361390	ELSA-2019-2143
	openssh-askpass-6.6.1p1-25.el7_2.x86_64.rpm	d48f3f7b7260e5b18bcee3f645c4f936	ELSA-2019-2143
	openssh-clients-6.6.1p1-25.el7_2.x86_64.rpm	478c310810c5258e30429c3abf037a2b	ELSA-2019-2143
	openssh-keycat-6.6.1p1-25.el7_2.x86_64.rpm	62ff844e3685cc032082f1cb9b7974d6	ELSA-2019-2143
	openssh-ldap-6.6.1p1-25.el7_2.x86_64.rpm	4442f16c3d5ca3f12cd73d3242a0b06b	ELSA-2019-2143
	openssh-server-6.6.1p1-25.el7_2.x86_64.rpm	eb60fe748bba90557492bf19e03ba5db	ELSA-2019-2143
	openssh-server-sysvinit-6.6.1p1-25.el7_2.x86_64.rpm	d9d06f8b6268d2abb4b9112a870d3a77	ELSA-2019-2143
	pam_ssh_agent_auth-0.9.3-9.25.el7_2.i686.rpm	02a5c6f393ca6283a4e3ef1906afbc4c	ELSA-2019-2143
	pam_ssh_agent_auth-0.9.3-9.25.el7_2.x86_64.rpm	a180630f32f5086ff598eeb2645e6c72	ELSA-2019-2143

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team