ELSA-2024-12158

ULN >
Oracle Linux Errata repository >
ELSA-2024-12158

ELSA-2024-12158 - openssh security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-02-13

Description

[7.4p1-23.0.3]
- add KEX_INITIAL flag [Orabug: 36160445]
- implement 'strict key exchange' [CVE-2023-48795][Orabug: 36160445]

Related CVEs

CVE-2023-48795

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	openssh-7.4p1-23.0.3.el7_9.src.rpm	50e4a2ca649df792f7135e3aeb666f366d945e1eaddc3355ff533306b7e037c7	ELSA-2024-12233	ol7_aarch64_latest
	openssh-7.4p1-23.0.3.el7_9.src.rpm	50e4a2ca649df792f7135e3aeb666f366d945e1eaddc3355ff533306b7e037c7	ELSA-2024-12233	ol7_aarch64_optional_latest
	openssh-7.4p1-23.0.3.el7_9.src.rpm	50e4a2ca649df792f7135e3aeb666f366d945e1eaddc3355ff533306b7e037c7	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-7.4p1-23.0.3.el7_9.aarch64.rpm	6e41253636895e80056acca0ffc372364068efbc873f9bf615bab7dfcc652395	ELSA-2024-12233	ol7_aarch64_latest
	openssh-7.4p1-23.0.3.el7_9.aarch64.rpm	6e41253636895e80056acca0ffc372364068efbc873f9bf615bab7dfcc652395	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-askpass-7.4p1-23.0.3.el7_9.aarch64.rpm	25e454160237adfd812d588858acfc1d45076f47f1bd5320b320a6b44be56953	ELSA-2024-12233	ol7_aarch64_latest
	openssh-askpass-7.4p1-23.0.3.el7_9.aarch64.rpm	25e454160237adfd812d588858acfc1d45076f47f1bd5320b320a6b44be56953	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-cavs-7.4p1-23.0.3.el7_9.aarch64.rpm	48d4a4294c1cb0d1fc627020efa18584652a961b73298a18fbaccd885846b533	ELSA-2024-12233	ol7_aarch64_optional_latest
	openssh-clients-7.4p1-23.0.3.el7_9.aarch64.rpm	bf946c9a5a9bd1ed1cd8c77141e77ae9d6b9821f082afe35a303376a305430ff	ELSA-2024-12233	ol7_aarch64_latest
	openssh-clients-7.4p1-23.0.3.el7_9.aarch64.rpm	bf946c9a5a9bd1ed1cd8c77141e77ae9d6b9821f082afe35a303376a305430ff	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-keycat-7.4p1-23.0.3.el7_9.aarch64.rpm	8840c75878ced6e054fae82342a02971a41d9de074bec32e45d94521bd221e75	ELSA-2024-12233	ol7_aarch64_latest
	openssh-keycat-7.4p1-23.0.3.el7_9.aarch64.rpm	8840c75878ced6e054fae82342a02971a41d9de074bec32e45d94521bd221e75	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-ldap-7.4p1-23.0.3.el7_9.aarch64.rpm	64fbe119029cfe6ee830a3f3bba5e96f4739e91e175f9d1fd9bdc138a56e2c62	ELSA-2024-12233	ol7_aarch64_optional_latest
	openssh-server-7.4p1-23.0.3.el7_9.aarch64.rpm	9ace5cd612b5d1a94e5135f9162c2067d6d1204f6539a6415f0f8e09c077dda5	ELSA-2024-12233	ol7_aarch64_latest
	openssh-server-7.4p1-23.0.3.el7_9.aarch64.rpm	9ace5cd612b5d1a94e5135f9162c2067d6d1204f6539a6415f0f8e09c077dda5	ELSA-2024-12233	ol7_aarch64_u9_patch
	openssh-server-sysvinit-7.4p1-23.0.3.el7_9.aarch64.rpm	4f6b0d1730629c42680d1c2c642cf4ce2e6943636aa4e8444543f456696694bf	ELSA-2024-12233	ol7_aarch64_optional_latest
	pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.aarch64.rpm	542f2ee1b6c39f62975551115160ff14176b1c96a7a9ca41e232edf4dbb7674c	ELSA-2024-12233	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	openssh-7.4p1-23.0.3.el7_9.src.rpm	50e4a2ca649df792f7135e3aeb666f366d945e1eaddc3355ff533306b7e037c7	ELSA-2024-12233	ol7_x86_64_latest
	openssh-7.4p1-23.0.3.el7_9.src.rpm	50e4a2ca649df792f7135e3aeb666f366d945e1eaddc3355ff533306b7e037c7	ELSA-2024-12233	ol7_x86_64_optional_latest
	openssh-7.4p1-23.0.3.el7_9.src.rpm	50e4a2ca649df792f7135e3aeb666f366d945e1eaddc3355ff533306b7e037c7	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.21.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.22.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.23.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.24.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.25.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.26.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.27.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.28.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.29.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.30.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.31.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.32.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	exadata_dbserver_22.1.33.0.0_x86_64_base
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	ol7_x86_64_latest
	openssh-7.4p1-23.0.3.el7_9.x86_64.rpm	c18bcf439efcd2eb38ceeed64a8a3c1d367a9bb497b48fea8819afe0ac72f0ba	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-askpass-7.4p1-23.0.3.el7_9.x86_64.rpm	e09f08a23dfc68918d65c5f19b07130d25db8746f1754dd699e95a872a256d4a	ELSA-2024-12233	ol7_x86_64_latest
	openssh-askpass-7.4p1-23.0.3.el7_9.x86_64.rpm	e09f08a23dfc68918d65c5f19b07130d25db8746f1754dd699e95a872a256d4a	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-cavs-7.4p1-23.0.3.el7_9.x86_64.rpm	1ff1b4a690a44a6290979c15ccf212c830c061327c4ee0a47bc8270567687a5e	ELSA-2024-12233	ol7_x86_64_optional_latest
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.21.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.22.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.23.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.24.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.25.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.26.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.27.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.28.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.29.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.30.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.31.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.32.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	exadata_dbserver_22.1.33.0.0_x86_64_base
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	ol7_x86_64_latest
	openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm	201be36f00b29f829bd846f4dc5d2fd22bc0fb4286a4dc771c0879aebcf74770	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-keycat-7.4p1-23.0.3.el7_9.x86_64.rpm	12002141bce98daa95d84c23ad88394f802df57a39a8eaeb83e6f0671a1037a7	ELSA-2024-12233	ol7_x86_64_latest
	openssh-keycat-7.4p1-23.0.3.el7_9.x86_64.rpm	12002141bce98daa95d84c23ad88394f802df57a39a8eaeb83e6f0671a1037a7	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-ldap-7.4p1-23.0.3.el7_9.x86_64.rpm	dad67d078268b4b826cfd16c688c9be945e3dd9b67ebaa346217fef3ce8e7daf	ELSA-2024-12233	ol7_x86_64_optional_latest
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.21.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.22.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.23.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.24.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.25.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.26.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.27.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.28.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.29.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.30.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.31.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.32.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	exadata_dbserver_22.1.33.0.0_x86_64_base
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	ol7_x86_64_latest
	openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm	752577692e76b3ef90d612ab361479e024b7cb7dce3eb26516671c29b3a8ba0c	ELSA-2024-12233	ol7_x86_64_u9_patch
	openssh-server-sysvinit-7.4p1-23.0.3.el7_9.x86_64.rpm	6c7527d5e52f0a63b80183bc22a90dfcb09e84b3024c39a0da905fa0a64e0c3e	ELSA-2024-12233	ol7_x86_64_optional_latest
	pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.i686.rpm	a1cd6a6ad5b73b1d3cefa21e7349f75d853ff9958c7d04823ceab3979f558bdc	ELSA-2024-12233	ol7_x86_64_optional_latest
	pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.x86_64.rpm	c760623e2d4cc3c8c7ae7a7fa31af34e59d3e5c03e9a11e8992e5fc1e99127aa	ELSA-2024-12233	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691