ELSA-2019-2143

ELSA-2019-2143 - openssh security, bug fix, and enhancement update

Type:SECURITY
Severity:LOW
Release Date:2019-08-13

Description


[7.4p1-21 + 0.10.3-2]
- Avoid double comma in the default cipher list in FIPS mode (#1722446)

[7.4p1-20 + 0.10.3-2]
- Revert the updating of cached passwd structure (#1712053)

[7.4p1-19 + 0.10.3-2]
- Update cached passwd structure after PAM authentication (#1674541)

[7.4p1-18 + 0.10.3-2]
- invalidate supplemental group cache used by temporarily_use_uid()
when the target uid differs (#1583735)

[7.4p1-17 + 0.10.3-2]
- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)


Related CVEs


CVE-2018-15473

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) openssh-7.4p1-21.el7.src.rpmbf1fbf81e5ebe2b04de9ec8e7e48ce8c-
openssh-7.4p1-21.el7.aarch64.rpm247b731060ad134359a5e239c56ae0f9-
openssh-askpass-7.4p1-21.el7.aarch64.rpmf8d67f91b1a7ce00dfaa74b52a251cad-
openssh-cavs-7.4p1-21.el7.aarch64.rpmbb619f71b4252cc0d4762e4622f25d59-
openssh-clients-7.4p1-21.el7.aarch64.rpmfdfdc14376cbcfa374653bfc7fb64b52-
openssh-keycat-7.4p1-21.el7.aarch64.rpm4126add84785088ea1137c0c0496d00e-
openssh-ldap-7.4p1-21.el7.aarch64.rpm4ad3c066d17ace9ef56358ce25c621ba-
openssh-server-7.4p1-21.el7.aarch64.rpma0f0f671c74040507abeaac0aaab4f35-
openssh-server-sysvinit-7.4p1-21.el7.aarch64.rpm9f03e7b4fa77cc0f4986777621a1b3af-
pam_ssh_agent_auth-0.10.3-2.21.el7.aarch64.rpm4c855a7f6279d72d93931e577ec8c4dc-
Oracle Linux 7 (x86_64) openssh-7.4p1-21.el7.src.rpmbf1fbf81e5ebe2b04de9ec8e7e48ce8c-
openssh-7.4p1-21.el7.x86_64.rpm2adaeaa1929bdf9131eece1a5357b1e2-
openssh-askpass-7.4p1-21.el7.x86_64.rpm71d570d539f52cbdaa2ee6095e4e4f76-
openssh-cavs-7.4p1-21.el7.x86_64.rpmeac66ee64e5119abf16cec0e4fa4b4fc-
openssh-clients-7.4p1-21.el7.x86_64.rpm339a4b38f3e6da6794cda3166f4cfaf4-
openssh-keycat-7.4p1-21.el7.x86_64.rpm7212a6796bdc45a4cdc974b0212f9ff7-
openssh-ldap-7.4p1-21.el7.x86_64.rpm64729bbaf8fd7085ec42ec5f57bb6e74-
openssh-server-7.4p1-21.el7.x86_64.rpm15b2622a8a7beb4bcb1641c38c868460-
openssh-server-sysvinit-7.4p1-21.el7.x86_64.rpm52a6276158b96020fa591f3d9425f9e0-
pam_ssh_agent_auth-0.10.3-2.21.el7.i686.rpmc44df121c72ce7531176f162b50badee-
pam_ssh_agent_auth-0.10.3-2.21.el7.x86_64.rpmeeb56983c1b2aca8417e2a18e3f3ec77-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete