Stay Connected:

ELSA-2021-9575

ELSA-2021-9575 - openssh security update

Type:SECURITY
Impact:MODERATE
Release Date:2021-12-07

Description


[7.4p1-22.0.1_fips]
- Change Epoch from 1 to 10
- Enable fips KDF POST [Orabug: 32461750]
- Disable diffie-hellman-group-exchange-sha256 KEX FIPS method [Orabug: 32461739]

[7.4p1-22.0.1]
- enlarge format buffer size for certificate serial
number so the log message can record any 64-bit integer without
truncation (openssh bz#3012) [Orabug: 30448895]

[7.4p1-22 + 0.10.3-2]
- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)


Related CVEs


CVE-2021-41617

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) openssh-7.4p1-22.0.1.el7_9_fips.src.rpm19c563567d56f100f95d80a9cac760923c99e91e34bb660bcb3587f7a96ea872ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-7.4p1-22.0.1.el7_9_fips.aarch64.rpm41a084d90c686e4d13f0d2f4e2a3da408b2efa1ce4ed26af7f74ab7a3badfeadELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-askpass-7.4p1-22.0.1.el7_9_fips.aarch64.rpmd5fbb918d871638a23b599f37ffe9e45a8968492f0a3b651edf6b660a55ddb07ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-cavs-7.4p1-22.0.1.el7_9_fips.aarch64.rpm26e49585d220cf4f31d9eba861d77991addb5fc4220987e757be6ef9e626c395ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-clients-7.4p1-22.0.1.el7_9_fips.aarch64.rpm32d7d37391a9077a49ba4440f07172e1f642263d05c1c91a5b56aff86f160622ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-keycat-7.4p1-22.0.1.el7_9_fips.aarch64.rpm8e9e36346646c4e77ac14a23547fb9353690f6605c39dca306aa9b2c8dd8fcf3ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-ldap-7.4p1-22.0.1.el7_9_fips.aarch64.rpm26a93eb2a2d1fc34eadc93f407b5b8caee9c111037f750b7e51344e889c95d0fELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-server-7.4p1-22.0.1.el7_9_fips.aarch64.rpmad2207cd9344f9a723a4b65166fc866cf4f673a7c475509fefb6815cc6a59abcELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-server-sysvinit-7.4p1-22.0.1.el7_9_fips.aarch64.rpm3dc889eb0626282097172a46ade2248e892dacafabb18e416ee752605c5351f2ELSA-2024-12233ol7_aarch64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.22.0.1.el7_9_fips.aarch64.rpm8e0f5ced558c586f058b7a59b806241cc6a6be32c1c07bfded312e9081f75209ELSA-2024-12233ol7_aarch64_u8_security_validation
Oracle Linux 7 (x86_64) openssh-7.4p1-22.0.1.el7_9_fips.src.rpm19c563567d56f100f95d80a9cac760923c99e91e34bb660bcb3587f7a96ea872ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-7.4p1-22.0.1.el7_9_fips.x86_64.rpmb963c3b0353a0a29b8c1f296054e3c7592772da985f1d5906d8012f9104fb94fELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-askpass-7.4p1-22.0.1.el7_9_fips.x86_64.rpm5aad126d8d814f0ea05be9fbab64ff1f464f1a4f9476517800fdfc3058616585ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-cavs-7.4p1-22.0.1.el7_9_fips.x86_64.rpm54aa15f22851d94b51a3040ff3b5df43b8b3785cb58a54fce69e11f0baac033aELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-clients-7.4p1-22.0.1.el7_9_fips.x86_64.rpm0ea6134a4b84910ba9e3eb3ea4aaafeb641aa8e5da1ad0cbb337f689e355525eELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-keycat-7.4p1-22.0.1.el7_9_fips.x86_64.rpmc737b916106bc87a02a39495782f9dc080c10eb1bcda248ecd27f1eba592e9e6ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-ldap-7.4p1-22.0.1.el7_9_fips.x86_64.rpm868c80336a09306f21f20c704a94959ed7673d451200a858563b6b02a81a8b3dELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-server-7.4p1-22.0.1.el7_9_fips.x86_64.rpm941a49e1cf6a4ffac9da9fdabb1360c34fc0aa0f41a0e8c7bc3a1f72709599a6ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-server-sysvinit-7.4p1-22.0.1.el7_9_fips.x86_64.rpmed2d49ceec3393b773311d1fe99242fdb43fb01dc2d8916387b229698eeb7e49ELSA-2024-12233ol7_x86_64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.22.0.1.el7_9_fips.i686.rpme13c784adf29a062967401ae75f50a5c91cf95f86ace35740e5c773bd84d137eELSA-2024-12233ol7_x86_64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.22.0.1.el7_9_fips.x86_64.rpm557b40fd82c6ca4da3c318fc1a2421fdb25ad69afd049c632f2699d5077383b2ELSA-2024-12233ol7_x86_64_u8_security_validation



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights