ELSA-2021-4368

ULN >
Oracle Linux Errata repository >
ELSA-2021-4368

ELSA-2021-4368 - openssh security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2021-11-16

Description

[8.0p1-10]
- sshd -T requires -C when 'Match' is used in sshd_config (#1836277)

[8.0p1-9]
- CVE-2020-14145 openssh: Observable Discrepancy leading to an information
leak in the algorithm negotiation (#1882252)
- Hostbased ssh authentication fails if session ID contains a '/' (#1944125)

[8.0p1-8]
- ssh doesnt restore the blocking mode on standard output (#1942901)

[8.0p1-7 + 0.10.3-7]
- SFTP sort upon the modification time (#1909988)
- ssh-keygen printing fingerprint issue with Windows keys (#1901518)
- PIN is lost when iterating over tokens when adding pkcs11 keys to ssh-agent (#1843372)
- ssh-agent segfaults during ssh-add -s pkcs11 (#1868996)
- ssh-copy-id could not resolve ipv6 address ends with colon (#1933517)
- sshd provides PAM an incorrect error code (#1879503)

Related CVEs

CVE-2020-14145

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	openssh-8.0p1-10.el8.src.rpm	96082a7bbd0b55585b380cfb4957bb4c	-
	openssh-8.0p1-10.el8.aarch64.rpm	59ce98dbe55ed7f147a60e708ed56817	-
	openssh-askpass-8.0p1-10.el8.aarch64.rpm	0113f7448611922520b0ec13e9675875	-
	openssh-cavs-8.0p1-10.el8.aarch64.rpm	2dcf9f8f5b45c068e76c09e3b1d9cdf8	-
	openssh-clients-8.0p1-10.el8.aarch64.rpm	608c435ee16001d1a0be38703d692743	-
	openssh-keycat-8.0p1-10.el8.aarch64.rpm	1348b2172ac3581e3f5a0eb0939fce88	-
	openssh-ldap-8.0p1-10.el8.aarch64.rpm	dadff5d8a26a937a9c5dd698d5294af0	-
	openssh-server-8.0p1-10.el8.aarch64.rpm	83b79b8685d3d62a9a5d578b25a3dbbf	-
	pam_ssh_agent_auth-0.10.3-7.10.el8.aarch64.rpm	ae8b78a79ebfc50f9e3651ed73ce5854	-

Oracle Linux 8 (x86_64)	openssh-8.0p1-10.el8.src.rpm	96082a7bbd0b55585b380cfb4957bb4c	-
	openssh-8.0p1-10.el8.x86_64.rpm	ecd695977905efc1a6aba5805e8dd2ee	-
	openssh-askpass-8.0p1-10.el8.x86_64.rpm	2454754b076f977f5effcf06f9680bc1	-
	openssh-cavs-8.0p1-10.el8.x86_64.rpm	5e960fea10e5510e7470167518b7b486	-
	openssh-clients-8.0p1-10.el8.x86_64.rpm	506c70353e5b65ece6e03f91053f91e6	-
	openssh-keycat-8.0p1-10.el8.x86_64.rpm	8be8f6484cef6d755f4f230453ae6159	-
	openssh-ldap-8.0p1-10.el8.x86_64.rpm	f83d278b201884a15fd503fab93a7fdf	-
	openssh-server-8.0p1-10.el8.x86_64.rpm	7c69a5a84efe17c74ffb18aa616e4a90	-
	pam_ssh_agent_auth-0.10.3-7.10.el8.x86_64.rpm	93fc12e4322bfe5179f284c67634cac5	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691