Stay Connected:

ELSA-2023-4382

ELSA-2023-4382 - openssh security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2023-08-02

Description


[7.4p1-23.0.1]
- enlarge format buffer size for certificate serial
number so the log message can record any 64-bit integer without
truncation (openssh bz#3012) [Orabug: 30448895]

[7.4p1-23 + 0.10.3-2]
- Avoid remote code execution in ssh-agent PKCS#11 support
Resolves: CVE-2023-38408


Related CVEs


CVE-2023-38408

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) openssh-7.4p1-23.0.1.el7_9.src.rpm53756018ca82c6eb2b7ede0763a4a3c7-
openssh-7.4p1-23.0.1.el7_9.aarch64.rpme7305d96eb84fa0b42cc479b5d9c8228-
openssh-askpass-7.4p1-23.0.1.el7_9.aarch64.rpmf2186083dc5c70cc44c4f71c2ff05afb-
openssh-cavs-7.4p1-23.0.1.el7_9.aarch64.rpm275648a564e1c1d5c784d916ce87f004-
openssh-clients-7.4p1-23.0.1.el7_9.aarch64.rpm3a8315d04ee094443cacada856e571a2-
openssh-keycat-7.4p1-23.0.1.el7_9.aarch64.rpm61cc733ef02160e1d9f91c61887e523a-
openssh-ldap-7.4p1-23.0.1.el7_9.aarch64.rpm3c4926ba3ed0d02cb1cede348a8d51d4-
openssh-server-7.4p1-23.0.1.el7_9.aarch64.rpm52158b004f9213949c2f54ec77acb21b-
openssh-server-sysvinit-7.4p1-23.0.1.el7_9.aarch64.rpm7260ce1602d73526b2d51320ebea4e16-
pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.aarch64.rpmc088c643b21fcf63529460283d448306-
Oracle Linux 7 (x86_64) openssh-7.4p1-23.0.1.el7_9.src.rpm53756018ca82c6eb2b7ede0763a4a3c7-
openssh-7.4p1-23.0.1.el7_9.x86_64.rpm67d0d259c6172e27cde955a79d0e3441-
openssh-askpass-7.4p1-23.0.1.el7_9.x86_64.rpmd39ef28e6725c249b18e4765861afb0f-
openssh-cavs-7.4p1-23.0.1.el7_9.x86_64.rpm7a8100ad59bde7889558f44ed4a34952-
openssh-clients-7.4p1-23.0.1.el7_9.x86_64.rpmb075edd40e06ce6c89fd1adc8febb430-
openssh-keycat-7.4p1-23.0.1.el7_9.x86_64.rpm9f5e99a39394099f70ee37b9fe13c89a-
openssh-ldap-7.4p1-23.0.1.el7_9.x86_64.rpmc4e84f44c1e03c36581d27f35d756491-
openssh-server-7.4p1-23.0.1.el7_9.x86_64.rpmdeb3eb4dcbd97e7d0afd390b0d021519-
openssh-server-sysvinit-7.4p1-23.0.1.el7_9.x86_64.rpm994a41690392db63d1d6ee4da67dbd67-
pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.i686.rpmc7b37af42057b313755e5c33d29ff118-
pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.x86_64.rpmc3da616d127a2b94f6af067ce0f1f07d-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights