ELSA-2024-12164

ULN >
Oracle Linux Errata repository >
ELSA-2024-12164

ELSA-2024-12164 - openssh security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-02-14

Description

[8.0p1-19.0.1.2]
- Update patches for CVE-2023-51385, CVE-2023-48795 [Orabug: 36256632]

[8.0p1-19.2]
- Forbid shell metasymbols in username/hostname
Resolves: CVE-2023-51385
- Fix Terrapin attack
Resolves: CVE-2023-48795

Related CVEs

CVE-2023-48795

CVE-2023-51385

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssh-8.0p1-19.0.1.el8_9.2.src.rpm	76a6e63bc357952196e370710c591a79	-	ol8_aarch64_appstream
	openssh-8.0p1-19.0.1.el8_9.2.src.rpm	76a6e63bc357952196e370710c591a79	-	ol8_aarch64_baseos_latest
	openssh-8.0p1-19.0.1.el8_9.2.src.rpm	76a6e63bc357952196e370710c591a79	-	ol8_aarch64_u9_baseos_patch
	openssh-8.0p1-19.0.1.el8_9.2.aarch64.rpm	c1b604257f8e8e61bc6268cd3bde4474	-	ol8_aarch64_baseos_latest
	openssh-8.0p1-19.0.1.el8_9.2.aarch64.rpm	c1b604257f8e8e61bc6268cd3bde4474	-	ol8_aarch64_u9_baseos_patch
	openssh-askpass-8.0p1-19.0.1.el8_9.2.aarch64.rpm	daea8cd4c069f87fe0fe2d9c0dfa5642	-	ol8_aarch64_appstream
	openssh-cavs-8.0p1-19.0.1.el8_9.2.aarch64.rpm	c400f698617903fdf3fb95137f9f173f	-	ol8_aarch64_baseos_latest
	openssh-cavs-8.0p1-19.0.1.el8_9.2.aarch64.rpm	c400f698617903fdf3fb95137f9f173f	-	ol8_aarch64_u9_baseos_patch
	openssh-clients-8.0p1-19.0.1.el8_9.2.aarch64.rpm	cd624b3632d65a5f93f4eb780a849dcf	-	ol8_aarch64_baseos_latest
	openssh-clients-8.0p1-19.0.1.el8_9.2.aarch64.rpm	cd624b3632d65a5f93f4eb780a849dcf	-	ol8_aarch64_u9_baseos_patch
	openssh-keycat-8.0p1-19.0.1.el8_9.2.aarch64.rpm	580bd09e6d8090e999930d4b39c94845	-	ol8_aarch64_baseos_latest
	openssh-keycat-8.0p1-19.0.1.el8_9.2.aarch64.rpm	580bd09e6d8090e999930d4b39c94845	-	ol8_aarch64_u9_baseos_patch
	openssh-ldap-8.0p1-19.0.1.el8_9.2.aarch64.rpm	762d0be1c38ce7008f304f206f049062	-	ol8_aarch64_baseos_latest
	openssh-ldap-8.0p1-19.0.1.el8_9.2.aarch64.rpm	762d0be1c38ce7008f304f206f049062	-	ol8_aarch64_u9_baseos_patch
	openssh-server-8.0p1-19.0.1.el8_9.2.aarch64.rpm	a4e6526a84862337022f777ea1dc1192	-	ol8_aarch64_baseos_latest
	openssh-server-8.0p1-19.0.1.el8_9.2.aarch64.rpm	a4e6526a84862337022f777ea1dc1192	-	ol8_aarch64_u9_baseos_patch
	pam_ssh_agent_auth-0.10.3-7.19.0.1.el8_9.2.aarch64.rpm	3e5cbb89f6265169236fe110fc214108	-	ol8_aarch64_baseos_latest
	pam_ssh_agent_auth-0.10.3-7.19.0.1.el8_9.2.aarch64.rpm	3e5cbb89f6265169236fe110fc214108	-	ol8_aarch64_u9_baseos_patch

Oracle Linux 8 (x86_64)	openssh-8.0p1-19.0.1.el8_9.2.src.rpm	76a6e63bc357952196e370710c591a79	-	ol8_x86_64_appstream
	openssh-8.0p1-19.0.1.el8_9.2.src.rpm	76a6e63bc357952196e370710c591a79	-	ol8_x86_64_baseos_latest
	openssh-8.0p1-19.0.1.el8_9.2.src.rpm	76a6e63bc357952196e370710c591a79	-	ol8_x86_64_u9_baseos_patch
	openssh-8.0p1-19.0.1.el8_9.2.x86_64.rpm	251b86439deb1ac3a25d0f69e3e81ea1	-	ol8_x86_64_baseos_latest
	openssh-8.0p1-19.0.1.el8_9.2.x86_64.rpm	251b86439deb1ac3a25d0f69e3e81ea1	-	ol8_x86_64_u9_baseos_patch
	openssh-askpass-8.0p1-19.0.1.el8_9.2.x86_64.rpm	c09320937fa77bd41fda529936b5d783	-	ol8_x86_64_appstream
	openssh-cavs-8.0p1-19.0.1.el8_9.2.x86_64.rpm	c844732ff95b59e862523ad4178d8e98	-	ol8_x86_64_baseos_latest
	openssh-cavs-8.0p1-19.0.1.el8_9.2.x86_64.rpm	c844732ff95b59e862523ad4178d8e98	-	ol8_x86_64_u9_baseos_patch
	openssh-clients-8.0p1-19.0.1.el8_9.2.x86_64.rpm	f15c3bdfe11053d81ef68eaa76986fa3	-	ol8_x86_64_baseos_latest
	openssh-clients-8.0p1-19.0.1.el8_9.2.x86_64.rpm	f15c3bdfe11053d81ef68eaa76986fa3	-	ol8_x86_64_u9_baseos_patch
	openssh-keycat-8.0p1-19.0.1.el8_9.2.x86_64.rpm	91c46229d2dc6d17ff1f9cb17c3789e1	-	ol8_x86_64_baseos_latest
	openssh-keycat-8.0p1-19.0.1.el8_9.2.x86_64.rpm	91c46229d2dc6d17ff1f9cb17c3789e1	-	ol8_x86_64_u9_baseos_patch
	openssh-ldap-8.0p1-19.0.1.el8_9.2.x86_64.rpm	20dc5086339f0cf300fd46ebd99a7f0d	-	ol8_x86_64_baseos_latest
	openssh-ldap-8.0p1-19.0.1.el8_9.2.x86_64.rpm	20dc5086339f0cf300fd46ebd99a7f0d	-	ol8_x86_64_u9_baseos_patch
	openssh-server-8.0p1-19.0.1.el8_9.2.x86_64.rpm	56dd1407b04eb8165279882c9f4de201	-	ol8_x86_64_baseos_latest
	openssh-server-8.0p1-19.0.1.el8_9.2.x86_64.rpm	56dd1407b04eb8165279882c9f4de201	-	ol8_x86_64_u9_baseos_patch
	pam_ssh_agent_auth-0.10.3-7.19.0.1.el8_9.2.x86_64.rpm	965f679d16ba2a39bcb3719f0abdd0a8	-	ol8_x86_64_baseos_latest
	pam_ssh_agent_auth-0.10.3-7.19.0.1.el8_9.2.x86_64.rpm	965f679d16ba2a39bcb3719f0abdd0a8	-	ol8_x86_64_u9_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691