ELSA-2023-4412

ELSA-2023-4412 - openssh security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-08-02

Description

[8.7p1-30]
- Avoid remote code execution in ssh-agent PKCS#11 support
Resolves: CVE-2023-38408

Related CVEs

CVE-2023-38408

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	openssh-8.7p1-30.el9_2.src.rpm	0b9c8bfa810e9717b078229230849e7f1f5600d8a236a37c00339c30914912bf	-	ol9_aarch64_appstream
	openssh-8.7p1-30.el9_2.src.rpm	0b9c8bfa810e9717b078229230849e7f1f5600d8a236a37c00339c30914912bf	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-30.el9_2.src.rpm	0b9c8bfa810e9717b078229230849e7f1f5600d8a236a37c00339c30914912bf	-	ol9_aarch64_u2_baseos_patch
	openssh-8.7p1-30.el9_2.aarch64.rpm	2953d49eed4a93d465e47b9740a1f5bfca79814948082b766215b9b38611022f	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-30.el9_2.aarch64.rpm	2953d49eed4a93d465e47b9740a1f5bfca79814948082b766215b9b38611022f	-	ol9_aarch64_u2_baseos_patch
	openssh-askpass-8.7p1-30.el9_2.aarch64.rpm	afc0042739c54a9a4eb54dddf4e7d15bceea930c255bfcfee236435fa17647ea	-	ol9_aarch64_appstream
	openssh-clients-8.7p1-30.el9_2.aarch64.rpm	34930f040578c976a3cbfc7d8bac399be9df930c4341b3bb319f1cfca09ee64c	-	ol9_aarch64_baseos_latest
	openssh-clients-8.7p1-30.el9_2.aarch64.rpm	34930f040578c976a3cbfc7d8bac399be9df930c4341b3bb319f1cfca09ee64c	-	ol9_aarch64_u2_baseos_patch
	openssh-keycat-8.7p1-30.el9_2.aarch64.rpm	693375bf81e1f9d26232905c33c415aabdf369894e068ed9a115aefc0d62deab	-	ol9_aarch64_baseos_latest
	openssh-keycat-8.7p1-30.el9_2.aarch64.rpm	693375bf81e1f9d26232905c33c415aabdf369894e068ed9a115aefc0d62deab	-	ol9_aarch64_u2_baseos_patch
	openssh-server-8.7p1-30.el9_2.aarch64.rpm	abd6db1e30fcab3891e6f912b1fe1551cf6ca4099284697559028b146f8706f0	-	ol9_aarch64_baseos_latest
	openssh-server-8.7p1-30.el9_2.aarch64.rpm	abd6db1e30fcab3891e6f912b1fe1551cf6ca4099284697559028b146f8706f0	-	ol9_aarch64_u2_baseos_patch
	pam_ssh_agent_auth-0.10.4-5.30.el9_2.aarch64.rpm	faf95abb1481e66f96e165e25b75c336f933c2c43e9993aa31b3e54151a1806a	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	openssh-8.7p1-30.el9_2.src.rpm	0b9c8bfa810e9717b078229230849e7f1f5600d8a236a37c00339c30914912bf	-	ol9_x86_64_appstream
	openssh-8.7p1-30.el9_2.src.rpm	0b9c8bfa810e9717b078229230849e7f1f5600d8a236a37c00339c30914912bf	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-30.el9_2.src.rpm	0b9c8bfa810e9717b078229230849e7f1f5600d8a236a37c00339c30914912bf	-	ol9_x86_64_u2_baseos_patch
	openssh-8.7p1-30.el9_2.x86_64.rpm	14b2660aeb6a989f25506eb58faa8833f7d7208f55a1b0bf04270a72edce37fa	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-30.el9_2.x86_64.rpm	14b2660aeb6a989f25506eb58faa8833f7d7208f55a1b0bf04270a72edce37fa	-	ol9_x86_64_u2_baseos_patch
	openssh-askpass-8.7p1-30.el9_2.x86_64.rpm	cd1afcf927f7c27c22ea6e2940ecfce550901c148c1c40a832a03426cf9e6654	-	ol9_x86_64_appstream
	openssh-clients-8.7p1-30.el9_2.x86_64.rpm	0eb33827e3af9a87fc4b18e1bc01dfe745d756390af45001b44a4539cea52575	-	ol9_x86_64_baseos_latest
	openssh-clients-8.7p1-30.el9_2.x86_64.rpm	0eb33827e3af9a87fc4b18e1bc01dfe745d756390af45001b44a4539cea52575	-	ol9_x86_64_u2_baseos_patch
	openssh-keycat-8.7p1-30.el9_2.x86_64.rpm	5fad9c36bf1496949e1d61af7bbc39dcbcd32234c08ed2ee6e366c1039670e31	-	ol9_x86_64_baseos_latest
	openssh-keycat-8.7p1-30.el9_2.x86_64.rpm	5fad9c36bf1496949e1d61af7bbc39dcbcd32234c08ed2ee6e366c1039670e31	-	ol9_x86_64_u2_baseos_patch
	openssh-server-8.7p1-30.el9_2.x86_64.rpm	d17083a130d3e430607ed306ff29eff1ca48dd32363098fe340a869de06d2476	-	ol9_x86_64_baseos_latest
	openssh-server-8.7p1-30.el9_2.x86_64.rpm	d17083a130d3e430607ed306ff29eff1ca48dd32363098fe340a869de06d2476	-	ol9_x86_64_u2_baseos_patch
	pam_ssh_agent_auth-0.10.4-5.30.el9_2.x86_64.rpm	c7ffe98844a2048838d5c2cd5b06eba413839971583ee0c7050f7117cbf3a691	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team