ELSA-2026-13383

ULN >
Oracle Linux Errata repository >
ELSA-2026-13383

ELSA-2026-13383 - openssh security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-05-05

Description

[8.0p1-29.0.1]
- Update upstream references [Orabug: 36587718]

[8.0p1-29]
- CVE-2026-35385: Fix privilege escalation via scp legacy protocol
when not in preserving file mode
Resolves: RHEL-164743
- CVE-2026-35388: Add connection multiplexing confirmation for proxy-mode
multiplexing sessions
Resolves: RHEL-166240
- CVE-2026-35387: Fix incomplete application of PubkeyAcceptedAlgorithms
and HostbasedAcceptedAlgorithms with regard to ECDSA keys
Resolves: RHEL-166224
- CVE-2026-35414: Fix mishandling of authorized_keys principals option
Resolves: RHEL-166192
- CVE-2026-35386: Add validation rules to usernames and hostnames
set for ProxyJump/-J on the commandline
Resolves: RHEL-166208

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssh-8.0p1-29.0.1.el8_10.src.rpm	b189d61a4d6ec2a897c24cd7ae9f27c7e4d9c793a3cc91b3f625d161bc42958d	-	ol8_aarch64_appstream
	openssh-8.0p1-29.0.1.el8_10.src.rpm	b189d61a4d6ec2a897c24cd7ae9f27c7e4d9c793a3cc91b3f625d161bc42958d	-	ol8_aarch64_baseos_latest
	openssh-8.0p1-29.0.1.el8_10.src.rpm	b189d61a4d6ec2a897c24cd7ae9f27c7e4d9c793a3cc91b3f625d161bc42958d	-	ol8_aarch64_u10_baseos_patch
	openssh-8.0p1-29.0.1.el8_10.aarch64.rpm	25aa88f7deba7f176ddb4a18c5c1ac9893503d63a1ae91e558abd2b39549da54	-	ol8_aarch64_baseos_latest
	openssh-8.0p1-29.0.1.el8_10.aarch64.rpm	25aa88f7deba7f176ddb4a18c5c1ac9893503d63a1ae91e558abd2b39549da54	-	ol8_aarch64_u10_baseos_patch
	openssh-askpass-8.0p1-29.0.1.el8_10.aarch64.rpm	dbfa54d921483a3bbaf9ec78b69176db87a8378f33013ea6a85c7b790eaba4d5	-	ol8_aarch64_appstream
	openssh-cavs-8.0p1-29.0.1.el8_10.aarch64.rpm	6429f27b4901ce10be7385dca24cbc79003d33c63a92a2c2827d4998105f86cf	-	ol8_aarch64_baseos_latest
	openssh-cavs-8.0p1-29.0.1.el8_10.aarch64.rpm	6429f27b4901ce10be7385dca24cbc79003d33c63a92a2c2827d4998105f86cf	-	ol8_aarch64_u10_baseos_patch
	openssh-clients-8.0p1-29.0.1.el8_10.aarch64.rpm	7f7beb760da1c952ce100cf2704388572e94ea722b30b99a4d402ce8fa34d0b9	-	ol8_aarch64_baseos_latest
	openssh-clients-8.0p1-29.0.1.el8_10.aarch64.rpm	7f7beb760da1c952ce100cf2704388572e94ea722b30b99a4d402ce8fa34d0b9	-	ol8_aarch64_u10_baseos_patch
	openssh-keycat-8.0p1-29.0.1.el8_10.aarch64.rpm	c9e28ec2ea8baecbaf6bd0817a34c7555aef1a1dacf93d9f923f545bc24b7290	-	ol8_aarch64_baseos_latest
	openssh-keycat-8.0p1-29.0.1.el8_10.aarch64.rpm	c9e28ec2ea8baecbaf6bd0817a34c7555aef1a1dacf93d9f923f545bc24b7290	-	ol8_aarch64_u10_baseos_patch
	openssh-ldap-8.0p1-29.0.1.el8_10.aarch64.rpm	19015df591b5389f6f7fe28e38b1af5de310158e118420dbd191045192413ff2	-	ol8_aarch64_baseos_latest
	openssh-ldap-8.0p1-29.0.1.el8_10.aarch64.rpm	19015df591b5389f6f7fe28e38b1af5de310158e118420dbd191045192413ff2	-	ol8_aarch64_u10_baseos_patch
	openssh-server-8.0p1-29.0.1.el8_10.aarch64.rpm	840de2fbaebc96bc551e832141560608c732218dad9242a27688b50407599bf7	-	ol8_aarch64_baseos_latest
	openssh-server-8.0p1-29.0.1.el8_10.aarch64.rpm	840de2fbaebc96bc551e832141560608c732218dad9242a27688b50407599bf7	-	ol8_aarch64_u10_baseos_patch
	pam_ssh_agent_auth-0.10.3-7.29.0.1.el8_10.aarch64.rpm	4868bd41360d8d7dafe87ec7cea0f5674e475b266b0b9c3bd39986d10e5dbfab	-	ol8_aarch64_baseos_latest
	pam_ssh_agent_auth-0.10.3-7.29.0.1.el8_10.aarch64.rpm	4868bd41360d8d7dafe87ec7cea0f5674e475b266b0b9c3bd39986d10e5dbfab	-	ol8_aarch64_u10_baseos_patch

Oracle Linux 8 (x86_64)	openssh-8.0p1-29.0.1.el8_10.src.rpm	b189d61a4d6ec2a897c24cd7ae9f27c7e4d9c793a3cc91b3f625d161bc42958d	-	ol8_x86_64_appstream
	openssh-8.0p1-29.0.1.el8_10.src.rpm	b189d61a4d6ec2a897c24cd7ae9f27c7e4d9c793a3cc91b3f625d161bc42958d	-	ol8_x86_64_baseos_latest
	openssh-8.0p1-29.0.1.el8_10.src.rpm	b189d61a4d6ec2a897c24cd7ae9f27c7e4d9c793a3cc91b3f625d161bc42958d	-	ol8_x86_64_u10_baseos_patch
	openssh-8.0p1-29.0.1.el8_10.x86_64.rpm	f2ff1173ae6e69f63f6b8984bb2604535ce5d8bcf99e2bca800a61a5efe6c5ec	-	ol8_x86_64_baseos_latest
	openssh-8.0p1-29.0.1.el8_10.x86_64.rpm	f2ff1173ae6e69f63f6b8984bb2604535ce5d8bcf99e2bca800a61a5efe6c5ec	-	ol8_x86_64_u10_baseos_patch
	openssh-askpass-8.0p1-29.0.1.el8_10.x86_64.rpm	9357cedfc312ae01960e244e878c2e986e59db47a7a5ae2027f48fc2b42da74c	-	ol8_x86_64_appstream
	openssh-cavs-8.0p1-29.0.1.el8_10.x86_64.rpm	261616684ec31d0f0876d0ee825e1c266bde3dd067575ee9bcfa243436449c98	-	ol8_x86_64_baseos_latest
	openssh-cavs-8.0p1-29.0.1.el8_10.x86_64.rpm	261616684ec31d0f0876d0ee825e1c266bde3dd067575ee9bcfa243436449c98	-	ol8_x86_64_u10_baseos_patch
	openssh-clients-8.0p1-29.0.1.el8_10.x86_64.rpm	f07aacb56081e1a3af15112c0f108e96242500f447910a4e0c4249db2d0ab57e	-	ol8_x86_64_baseos_latest
	openssh-clients-8.0p1-29.0.1.el8_10.x86_64.rpm	f07aacb56081e1a3af15112c0f108e96242500f447910a4e0c4249db2d0ab57e	-	ol8_x86_64_u10_baseos_patch
	openssh-keycat-8.0p1-29.0.1.el8_10.x86_64.rpm	564b58067dffff8c85e817b7626960036d5410d7ca1683d81fdb1b5029dddba0	-	ol8_x86_64_baseos_latest
	openssh-keycat-8.0p1-29.0.1.el8_10.x86_64.rpm	564b58067dffff8c85e817b7626960036d5410d7ca1683d81fdb1b5029dddba0	-	ol8_x86_64_u10_baseos_patch
	openssh-ldap-8.0p1-29.0.1.el8_10.x86_64.rpm	b8159ec97d9791ab366159b868ac4b0c914938a4ebcef956d7d9d609ccb2da96	-	ol8_x86_64_baseos_latest
	openssh-ldap-8.0p1-29.0.1.el8_10.x86_64.rpm	b8159ec97d9791ab366159b868ac4b0c914938a4ebcef956d7d9d609ccb2da96	-	ol8_x86_64_u10_baseos_patch
	openssh-server-8.0p1-29.0.1.el8_10.x86_64.rpm	9113661c1f38c2072fab18d2e6945af34adbafd66df3617e0d4331431e40712d	-	ol8_x86_64_baseos_latest
	openssh-server-8.0p1-29.0.1.el8_10.x86_64.rpm	9113661c1f38c2072fab18d2e6945af34adbafd66df3617e0d4331431e40712d	-	ol8_x86_64_u10_baseos_patch
	pam_ssh_agent_auth-0.10.3-7.29.0.1.el8_10.x86_64.rpm	6f1c1a7b3e54c7d4dda0573ae50b48e6071773ea156cb37c4445ecb83012e9c4	-	ol8_x86_64_baseos_latest
	pam_ssh_agent_auth-0.10.3-7.29.0.1.el8_10.x86_64.rpm	6f1c1a7b3e54c7d4dda0573ae50b48e6071773ea156cb37c4445ecb83012e9c4	-	ol8_x86_64_u10_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691