ELSA-2025-23480

ULN >
Oracle Linux Errata repository >
ELSA-2025-23480

ELSA-2025-23480 - openssh security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2025-12-18

Description

[8.7p1-47.0.1]
- Upstream references found with /usr/bin/ssh [Orabug: 37814929]
- upstream: fix AuthorizedPrincipalsCommand when AuthorizedKeysCommand [Orabug: 37647064]
- Update upstream references [Orabug: 36564626]

[8.7p1-47]
- CVE-2025-61984: Reject usernames with control characters
Resolves: RHEL-128401
- CVE-2025-61985: Reject URL-strings with NULL characters
Resolves: RHEL-128392

Related CVEs

CVE-2025-61984

CVE-2025-61985

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	openssh-8.7p1-47.0.1.el9_7.src.rpm	0ed4c8a6cac59a75004806f4c3c8d8fc5f7aca8ce113255bb63fb0c3c618945e	-	ol9_aarch64_appstream
	openssh-8.7p1-47.0.1.el9_7.src.rpm	0ed4c8a6cac59a75004806f4c3c8d8fc5f7aca8ce113255bb63fb0c3c618945e	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-47.0.1.el9_7.src.rpm	0ed4c8a6cac59a75004806f4c3c8d8fc5f7aca8ce113255bb63fb0c3c618945e	-	ol9_aarch64_u7_baseos_patch
	openssh-8.7p1-47.0.1.el9_7.aarch64.rpm	74b35862243ad705aad4c9b7c04163ebe6162b334bd04ccf723e14f5998b4137	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-47.0.1.el9_7.aarch64.rpm	74b35862243ad705aad4c9b7c04163ebe6162b334bd04ccf723e14f5998b4137	-	ol9_aarch64_u7_baseos_patch
	openssh-askpass-8.7p1-47.0.1.el9_7.aarch64.rpm	97da4294927e9c10674d3f551a4056c010e30e1d83f9580a9e77c98b98c35e14	-	ol9_aarch64_appstream
	openssh-clients-8.7p1-47.0.1.el9_7.aarch64.rpm	0902f783ed458097b5020b34de7e87c20be572f97822295600984169a932e56f	-	ol9_aarch64_baseos_latest
	openssh-clients-8.7p1-47.0.1.el9_7.aarch64.rpm	0902f783ed458097b5020b34de7e87c20be572f97822295600984169a932e56f	-	ol9_aarch64_u7_baseos_patch
	openssh-keycat-8.7p1-47.0.1.el9_7.aarch64.rpm	83f28ecf279db1651313de76f2c82d2820a7414a0fd7e3655b8b48e0ae7ddd6e	-	ol9_aarch64_baseos_latest
	openssh-keycat-8.7p1-47.0.1.el9_7.aarch64.rpm	83f28ecf279db1651313de76f2c82d2820a7414a0fd7e3655b8b48e0ae7ddd6e	-	ol9_aarch64_u7_baseos_patch
	openssh-server-8.7p1-47.0.1.el9_7.aarch64.rpm	7d623c85deaec39529b24948aa3721df8897407e2430b926f6cbca2e7cc1a86a	-	ol9_aarch64_baseos_latest
	openssh-server-8.7p1-47.0.1.el9_7.aarch64.rpm	7d623c85deaec39529b24948aa3721df8897407e2430b926f6cbca2e7cc1a86a	-	ol9_aarch64_u7_baseos_patch
	pam_ssh_agent_auth-0.10.4-5.47.0.1.el9_7.aarch64.rpm	2ed86e4bef626897f6ad1bc7d6594bcd3afb711895c7ff355277229d6703bf09	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	openssh-8.7p1-47.0.1.el9_7.src.rpm	0ed4c8a6cac59a75004806f4c3c8d8fc5f7aca8ce113255bb63fb0c3c618945e	-	ol9_x86_64_appstream
	openssh-8.7p1-47.0.1.el9_7.src.rpm	0ed4c8a6cac59a75004806f4c3c8d8fc5f7aca8ce113255bb63fb0c3c618945e	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-47.0.1.el9_7.src.rpm	0ed4c8a6cac59a75004806f4c3c8d8fc5f7aca8ce113255bb63fb0c3c618945e	-	ol9_x86_64_u7_baseos_patch
	openssh-8.7p1-47.0.1.el9_7.x86_64.rpm	96566253ca772c7b4f2b09a791ede57f7935ddf9b622fb58ac1e44d8a847c50d	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-47.0.1.el9_7.x86_64.rpm	96566253ca772c7b4f2b09a791ede57f7935ddf9b622fb58ac1e44d8a847c50d	-	ol9_x86_64_u7_baseos_patch
	openssh-askpass-8.7p1-47.0.1.el9_7.x86_64.rpm	81201255838c6dc3761a153c3074a590894d99d97c9afa42c5eeccc0d69bd4b4	-	ol9_x86_64_appstream
	openssh-clients-8.7p1-47.0.1.el9_7.x86_64.rpm	c13b9ebb57add0302c26a436e423a92c60ae383eee7b8c8309acb687717454ca	-	ol9_x86_64_baseos_latest
	openssh-clients-8.7p1-47.0.1.el9_7.x86_64.rpm	c13b9ebb57add0302c26a436e423a92c60ae383eee7b8c8309acb687717454ca	-	ol9_x86_64_u7_baseos_patch
	openssh-keycat-8.7p1-47.0.1.el9_7.x86_64.rpm	dd6e193fa50921552939481d2cbbbf4352322d6b3f35816ae80976df58814119	-	ol9_x86_64_baseos_latest
	openssh-keycat-8.7p1-47.0.1.el9_7.x86_64.rpm	dd6e193fa50921552939481d2cbbbf4352322d6b3f35816ae80976df58814119	-	ol9_x86_64_u7_baseos_patch
	openssh-server-8.7p1-47.0.1.el9_7.x86_64.rpm	4f4d2e75a7a633ec3bff0a43f89968394dadd8b3200d11d4d43fd42b39f52245	-	ol9_x86_64_baseos_latest
	openssh-server-8.7p1-47.0.1.el9_7.x86_64.rpm	4f4d2e75a7a633ec3bff0a43f89968394dadd8b3200d11d4d43fd42b39f52245	-	ol9_x86_64_u7_baseos_patch
	pam_ssh_agent_auth-0.10.4-5.47.0.1.el9_7.x86_64.rpm	fb5eaec9216afbe101cdad6892b5bf87ef23b7755ecfe50fa44973a74110af4c	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691