Stay Connected:

ELSA-2023-12711

ELSA-2023-12711 - openssh security update

Type:SECURITY
Impact:CRITICAL
Release Date:2023-08-10

Description


[7.4p1-23.0.1_fips]
- Change Epoch from 1 to 10
- Enable fips KDF POST [Orabug: 32461750]
- Disable diffie-hellman-group-exchange-sha256 KEX FIPS method [Orabug: 32461739]

[7.4p1-23.0.1]
- enlarge format buffer size for certificate serial
number so the log message can record any 64-bit integer without
truncation (openssh bz#3012) [Orabug: 30448895]

[7.4p1-23 + 0.10.3-2]
- Avoid remote code execution in ssh-agent PKCS#11 support
Resolves: CVE-2023-38408


Related CVEs


CVE-2023-38408

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) openssh-7.4p1-23.0.1.el7_9_fips.src.rpmbce6530e3e925756c3a0b52647b2f0094faf596e8897d59a33a7a959d82a513fELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-7.4p1-23.0.1.el7_9_fips.aarch64.rpm0d690447afd6b19108a916bade3bef16559d5708cece4313c3b4f081f7a6f234ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-askpass-7.4p1-23.0.1.el7_9_fips.aarch64.rpm4d73854821f3f8b98048d38cf28a4420ba195ea7159b2c9f311b4991fa3562e3ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-cavs-7.4p1-23.0.1.el7_9_fips.aarch64.rpmfa3d94afd1f94ef8173cc150cef4763cc0984b5e6c6fada64556579515b084aaELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-clients-7.4p1-23.0.1.el7_9_fips.aarch64.rpmbf58a87704aea651a4e311f04a718e0dbf51199d1c7c0efbfeb3d8a0f8a84d3fELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-keycat-7.4p1-23.0.1.el7_9_fips.aarch64.rpm46e0a191fba445fab7e1415819b80252f4cb9d5b79b1b3b7af6194ef3e4b29f5ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-ldap-7.4p1-23.0.1.el7_9_fips.aarch64.rpm0a84eb503df8515b6e1af4ad82b407d6b1ca05da20fd1e510f91daaa9d75185dELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-server-7.4p1-23.0.1.el7_9_fips.aarch64.rpmc239bdb32f1d028ad7cf6253bafcb36aec3d1ffdebd6e694c988b3207fd64a15ELSA-2024-12233ol7_aarch64_u8_security_validation
openssh-server-sysvinit-7.4p1-23.0.1.el7_9_fips.aarch64.rpm35b81fbbbe60b230562c6848505c024ef36df4ac9df5be9b1d8d406c36960bb9ELSA-2024-12233ol7_aarch64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9_fips.aarch64.rpm9b42c2cb4d6193fd6f64ecd16eb6df578d7e970a8c29ae5120df03075ea70502ELSA-2024-12233ol7_aarch64_u8_security_validation
Oracle Linux 7 (x86_64) openssh-7.4p1-23.0.1.el7_9_fips.src.rpmbce6530e3e925756c3a0b52647b2f0094faf596e8897d59a33a7a959d82a513fELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-7.4p1-23.0.1.el7_9_fips.x86_64.rpm3a8182309560e0034a0e4ab93006d888e583f28d7d212a5e46066d4617783afdELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-askpass-7.4p1-23.0.1.el7_9_fips.x86_64.rpm242abaf8bc8dd1164c18e515b3bee3243303e08dee5253e824cdb3709643bc48ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-cavs-7.4p1-23.0.1.el7_9_fips.x86_64.rpmc85a473df175d8429c7d8d5aea1cc9a4a666089e52920b579c1bbb4036eb1977ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-clients-7.4p1-23.0.1.el7_9_fips.x86_64.rpm83207812a46e25396edbe62e68eee78c1af91f03979aef1d8d5a5e58d9467a47ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-keycat-7.4p1-23.0.1.el7_9_fips.x86_64.rpm8d082bcaf33f04c7b0e83a36cf46bbe970519973c8f6c3eba6ebdf075a10b58cELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-ldap-7.4p1-23.0.1.el7_9_fips.x86_64.rpm20e85a83d3a2b1180380ddf5f6be64e71f85b714bc2b61af8dc2fe4d7f95c480ELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-server-7.4p1-23.0.1.el7_9_fips.x86_64.rpm08283ca10690fbcdd9af0bb69ed8ae2cdf44ff8ea08cd079c2b3c925c51c19fcELSA-2024-12233ol7_x86_64_u8_security_validation
openssh-server-sysvinit-7.4p1-23.0.1.el7_9_fips.x86_64.rpm81d005bb3ec6ba24bda810694826163cc367f3597e26fd5d72c21819c4ed3d04ELSA-2024-12233ol7_x86_64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9_fips.i686.rpm83dcbb1612078dee537de5a9c67ddc44926bf2ea2d228a81adc86639403404f4ELSA-2024-12233ol7_x86_64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9_fips.x86_64.rpme9b7698f81cb5df323d1047650af5e22e0327896ec94901cb156241695f25690ELSA-2024-12233ol7_x86_64_u8_security_validation



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights