ELSA-2025-6993

ULN >
Oracle Linux Errata repository >
ELSA-2025-6993

ELSA-2025-6993 - openssh security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2025-05-16

Description

[8.7p1-45.0.2]
- Upstream references found with /usr/bin/ssh [Orabug: 37814929]

[8.7p1-45.0.1]
- upstream: fix AuthorizedPrincipalsCommand when AuthorizedKeysCommand [Orabug: 37647064]
- Update upstream references [Orabug: 36564626]

[8.7p1-45]
- Fix missing error codes set and invalid error code checks in OpenSSH. It
prevents memory exhaustion attack and a MITM attack when VerifyHostKeyDNS
is on (CVE-2025-26465).
Resolves: RHEL-78700

[8.7p1-44]
- Add extra help information on ssh early failure
Resolves: RHEL-33809
- Provide details on crypto error instead of 'error in libcrypto'
Resolves: RHEL-52293
- Allow duplicate Subsystem directive
Resolves: RHEL-47112

Related CVEs

CVE-2025-26465

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	openssh-8.7p1-45.0.2.el9.src.rpm	557798d6bd98f936b379a89f5564f8790326f4871b1c80219493690d48075f3d	-	ol9_aarch64_appstream
	openssh-8.7p1-45.0.2.el9.src.rpm	557798d6bd98f936b379a89f5564f8790326f4871b1c80219493690d48075f3d	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-45.0.2.el9.src.rpm	557798d6bd98f936b379a89f5564f8790326f4871b1c80219493690d48075f3d	-	ol9_aarch64_u6_baseos_base
	openssh-8.7p1-45.0.2.el9.aarch64.rpm	2014a587dca0cb729a3688514069d32226b5296a53fc7bb932375df4a1d5da44	-	ol9_aarch64_baseos_latest
	openssh-8.7p1-45.0.2.el9.aarch64.rpm	2014a587dca0cb729a3688514069d32226b5296a53fc7bb932375df4a1d5da44	-	ol9_aarch64_u6_baseos_base
	openssh-askpass-8.7p1-45.0.2.el9.aarch64.rpm	1d8a8a54a79325728b2c21c76071e9de21a9c85539cd4df374cfc08263dbef25	-	ol9_aarch64_appstream
	openssh-clients-8.7p1-45.0.2.el9.aarch64.rpm	45de4eeef1fe1a6fa4e34f2a36b070e0263a9eafc72cf9bb4fbcad73a3bf5788	-	ol9_aarch64_baseos_latest
	openssh-clients-8.7p1-45.0.2.el9.aarch64.rpm	45de4eeef1fe1a6fa4e34f2a36b070e0263a9eafc72cf9bb4fbcad73a3bf5788	-	ol9_aarch64_u6_baseos_base
	openssh-keycat-8.7p1-45.0.2.el9.aarch64.rpm	ed71d28bd4b469ade48729aadb17663d4d48293a61d87f0492a73783d1a6db06	-	ol9_aarch64_baseos_latest
	openssh-keycat-8.7p1-45.0.2.el9.aarch64.rpm	ed71d28bd4b469ade48729aadb17663d4d48293a61d87f0492a73783d1a6db06	-	ol9_aarch64_u6_baseos_base
	openssh-server-8.7p1-45.0.2.el9.aarch64.rpm	822acffa20d62061e73930692e207fc5bbcec3b8b091f13b97abae46e387654e	-	ol9_aarch64_baseos_latest
	openssh-server-8.7p1-45.0.2.el9.aarch64.rpm	822acffa20d62061e73930692e207fc5bbcec3b8b091f13b97abae46e387654e	-	ol9_aarch64_u6_baseos_base
	pam_ssh_agent_auth-0.10.4-5.45.0.2.el9.aarch64.rpm	9d7718491e42733f30050f06b25c0ed93061f16ead3848ae245af74ee372434c	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	openssh-8.7p1-45.0.2.el9.src.rpm	557798d6bd98f936b379a89f5564f8790326f4871b1c80219493690d48075f3d	-	ol9_x86_64_appstream
	openssh-8.7p1-45.0.2.el9.src.rpm	557798d6bd98f936b379a89f5564f8790326f4871b1c80219493690d48075f3d	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-45.0.2.el9.src.rpm	557798d6bd98f936b379a89f5564f8790326f4871b1c80219493690d48075f3d	-	ol9_x86_64_u6_baseos_base
	openssh-8.7p1-45.0.2.el9.x86_64.rpm	5ea037f2ac7cf24dfd48025ecf7260f0ae9afaef94ec36b8f5d0689d55dd7864	-	ol9_x86_64_baseos_latest
	openssh-8.7p1-45.0.2.el9.x86_64.rpm	5ea037f2ac7cf24dfd48025ecf7260f0ae9afaef94ec36b8f5d0689d55dd7864	-	ol9_x86_64_u6_baseos_base
	openssh-askpass-8.7p1-45.0.2.el9.x86_64.rpm	8a74a1fe9da7b09e231e29f0353ab9da2868d3bc7aacd3aa713573e37b8128c7	-	ol9_x86_64_appstream
	openssh-clients-8.7p1-45.0.2.el9.x86_64.rpm	9ab8939819068805d5d20f0503bdeb4a9265e03b36a9be99db40ee15428e2e8f	-	ol9_x86_64_baseos_latest
	openssh-clients-8.7p1-45.0.2.el9.x86_64.rpm	9ab8939819068805d5d20f0503bdeb4a9265e03b36a9be99db40ee15428e2e8f	-	ol9_x86_64_u6_baseos_base
	openssh-keycat-8.7p1-45.0.2.el9.x86_64.rpm	053d36333678fed172230e91fa5236f1fb1471ec9c753c5e5e93dce04fc43c49	-	ol9_x86_64_baseos_latest
	openssh-keycat-8.7p1-45.0.2.el9.x86_64.rpm	053d36333678fed172230e91fa5236f1fb1471ec9c753c5e5e93dce04fc43c49	-	ol9_x86_64_u6_baseos_base
	openssh-server-8.7p1-45.0.2.el9.x86_64.rpm	0df11b1563b37876a55622d57ff7bee81f6f9e9ac783c9f5a77b552af1ea9d11	-	ol9_x86_64_baseos_latest
	openssh-server-8.7p1-45.0.2.el9.x86_64.rpm	0df11b1563b37876a55622d57ff7bee81f6f9e9ac783c9f5a77b552af1ea9d11	-	ol9_x86_64_u6_baseos_base
	pam_ssh_agent_auth-0.10.4-5.45.0.2.el9.x86_64.rpm	3c4aa500e5b336cc1d1c8005b0956b1b2580be24f710005504db53233d729506	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691