ELSA-2024-1130

ULN >
Oracle Linux Errata repository >
ELSA-2024-1130

ELSA-2024-1130 - openssh security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-03-06

Description

[8.7p1-34.3]
- Fix Terrapin attack (CVE-2023-48795)
Resolves: RHEL-19764
- Forbid shell metasymbols in username/hostname (CVE-2023-51385)
Resolves: RHEL-19822

Related CVEs

CVE-2023-48795

CVE-2023-51385

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	openssh-8.7p1-34.el9_3.3.src.rpm	e294afbafc29f3e30dfb720fddeae52e2312b8e1e45ba40bf4bf48423a8b672b	-	ol9_aarch64_appstream
	openssh-8.7p1-34.el9_3.3.src.rpm	e294afbafc29f3e30dfb720fddeae52e2312b8e1e45ba40bf4bf48423a8b672b	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-34.el9_3.3.aarch64.rpm	8c2f4c6d338841609e0736723eb847a050ab2c556d48be196bc17408e671e9c2	-	ol9_aarch64_baseos_latest
	openssh-askpass-8.7p1-34.el9_3.3.aarch64.rpm	9384873062e415c2995047dc90fa29a9c94881980beea8f8126ab41b1d16655f	-	ol9_aarch64_appstream
	openssh-clients-8.7p1-34.el9_3.3.aarch64.rpm	4b25283f01afc90b2463716097442edc906ad931023ab5f9f239822cca5a069a	-	ol9_aarch64_baseos_latest
	openssh-keycat-8.7p1-34.el9_3.3.aarch64.rpm	f25377b25142f60e3137b03c8021d5fa9147bd9610531c6061b2c14dce785cfb	-	ol9_aarch64_baseos_latest
	openssh-server-8.7p1-34.el9_3.3.aarch64.rpm	ca2f4697474fc969d0e88b778cc764ab142d256d95ef48c2576ea62ebf5581a8	-	ol9_aarch64_baseos_latest
	pam_ssh_agent_auth-0.10.4-5.34.el9_3.3.aarch64.rpm	82bcb29dac1ac454ed54d861d140e396b57c57712cc83e3105475567ee70d1c0	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	openssh-8.7p1-34.el9_3.3.src.rpm	e294afbafc29f3e30dfb720fddeae52e2312b8e1e45ba40bf4bf48423a8b672b	-	ol9_x86_64_appstream
	openssh-8.7p1-34.el9_3.3.src.rpm	e294afbafc29f3e30dfb720fddeae52e2312b8e1e45ba40bf4bf48423a8b672b	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-34.el9_3.3.x86_64.rpm	5dfa4deab06856a410eada9b21ab96f126a3706e31d0bee9dfb84d3c9883a0ed	-	ol9_x86_64_baseos_latest
	openssh-askpass-8.7p1-34.el9_3.3.x86_64.rpm	4a6b539f14ccc642f17cdf6fe77d35bb3b14e3c0884835d931bccfea3eebc5a3	-	ol9_x86_64_appstream
	openssh-clients-8.7p1-34.el9_3.3.x86_64.rpm	022fd09a66c991da930bc374b3b64c0ddb26147805e920a14dd5f522c19813ea	-	ol9_x86_64_baseos_latest
	openssh-keycat-8.7p1-34.el9_3.3.x86_64.rpm	8e858b0abea83791697c56d33882d7f35bcada5ed2203cf88577d3ca49293c4d	-	ol9_x86_64_baseos_latest
	openssh-server-8.7p1-34.el9_3.3.x86_64.rpm	5719e39b162ec675ef21bf749cdfa4a347d523222624d60de45b3b59b67904ce	-	ol9_x86_64_baseos_latest
	pam_ssh_agent_auth-0.10.4-5.34.el9_3.3.x86_64.rpm	30695e4fdc28147cbb66c2f2477fdcc36c5a70fb724cfe563249331e354f6234	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691