ELSA-2021-9575

ULN >
Oracle Linux Errata repository >
ELSA-2021-9575

ELSA-2021-9575 - openssh security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2021-12-07

Description

[7.4p1-22.0.1_fips]
- Change Epoch from 1 to 10
- Enable fips KDF POST [Orabug: 32461750]
- Disable diffie-hellman-group-exchange-sha256 KEX FIPS method [Orabug: 32461739]

[7.4p1-22.0.1]
- enlarge format buffer size for certificate serial
number so the log message can record any 64-bit integer without
truncation (openssh bz#3012) [Orabug: 30448895]

[7.4p1-22 + 0.10.3-2]
- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)

Related CVEs

CVE-2021-41617

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	openssh-7.4p1-22.0.1.el7_9_fips.src.rpm	541c9323196809ea57b6a17ac34ab87e	-
	openssh-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	8d330855bff4a161efd85d004960537c	-
	openssh-askpass-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	52f4e0dc189f99b74f09a0e008c18cb6	-
	openssh-cavs-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	29904320042b579084d5c24822b8c80b	-
	openssh-clients-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	1734ca16fd53c0e9d71415bfa56bf95b	-
	openssh-keycat-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	767dd5cd638992942369a6bb0b41fa0c	-
	openssh-ldap-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	df6be86c563db67574686015dc425085	-
	openssh-server-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	4238850b6ebf0ba6625191ef1a6d040b	-
	openssh-server-sysvinit-7.4p1-22.0.1.el7_9_fips.aarch64.rpm	10b48139cba0907b3f673262a8ae9d5c	-
	pam_ssh_agent_auth-0.10.3-2.22.0.1.el7_9_fips.aarch64.rpm	122116d929325d096dc2b17bce961060	-

Oracle Linux 7 (x86_64)	openssh-7.4p1-22.0.1.el7_9_fips.src.rpm	541c9323196809ea57b6a17ac34ab87e	-
	openssh-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	ecc0ed5e72809943c05216e76fba390b	-
	openssh-askpass-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	485132d525bea86f971ddb8cfedf2473	-
	openssh-cavs-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	37cf4ee38034f24c6316b927e89ef79c	-
	openssh-clients-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	895d56dabfb2d16f35433b635b4ed4be	-
	openssh-keycat-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	11cb983863b7b735d1671d09428aeff6	-
	openssh-ldap-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	af48cf5aebc25b1808767c07443c815a	-
	openssh-server-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	d0c88ee3ccdf16cc646ce60ef0d4571d	-
	openssh-server-sysvinit-7.4p1-22.0.1.el7_9_fips.x86_64.rpm	cb3cd5785e94702e22a5f02295a4c426	-
	pam_ssh_agent_auth-0.10.3-2.22.0.1.el7_9_fips.i686.rpm	dab0163c81efd09b873edde8953ed79e	-
	pam_ssh_agent_auth-0.10.3-2.22.0.1.el7_9_fips.x86_64.rpm	0f0b3104123fa560564ea75915913576	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691