ELSA-2026-22468

ULN >
Oracle Linux Errata repository >
ELSA-2026-22468

ELSA-2026-22468 - openssh security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-06-18

Description

[7.4p1-23.0.5]
- Fix privilege escalation via scp legacy protocol when not in preserving
file mode [CVE-2026-35385][Orabug: 39480251]

Related CVEs

CVE-2026-35385

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	openssh-7.4p1-23.0.5.el7_9.src.rpm	8491fa231f4fd0f63beae304d19daf62ca1425d9ca9f91a1a797b16d0deff0a3	-	ol7_x86_64_latest_ELS
	openssh-7.4p1-23.0.5.el7_9.x86_64.rpm	c05585e808eb688b43dcb50b95e36a001740bb1eeeb60654d35d2bf7b3b7850d	-	ol7_x86_64_latest_ELS
	openssh-askpass-7.4p1-23.0.5.el7_9.x86_64.rpm	d5c117bf01e21e6bc4bb52b236380c206d57c28172d29832dab015b512cddd70	-	ol7_x86_64_latest_ELS
	openssh-cavs-7.4p1-23.0.5.el7_9.x86_64.rpm	657dc889e7dc0bceb83c2b3247d0c0a7cc40e00538f23c78146d3da50e10335a	-	ol7_x86_64_latest_ELS
	openssh-clients-7.4p1-23.0.5.el7_9.x86_64.rpm	9d1556a0ad526e8d264cbb2e4325223b66b7fd212e98e9c53907673bbcfc4caf	-	ol7_x86_64_latest_ELS
	openssh-keycat-7.4p1-23.0.5.el7_9.x86_64.rpm	b0e59ed71191cfa6fd2ab0e1db1c9f27b06d6e2124836e4511eddf23e3565bd6	-	ol7_x86_64_latest_ELS
	openssh-ldap-7.4p1-23.0.5.el7_9.x86_64.rpm	00b889d66a8e950ee869fbaeb2898bdad2cdbf29d2bbe609a1e7d6b4d295ae36	-	ol7_x86_64_latest_ELS
	openssh-server-7.4p1-23.0.5.el7_9.x86_64.rpm	af90a953d15e0bcd0a169e5f61e56cfcb6fee849a5f62f163cae6d61cbca5921	-	ol7_x86_64_latest_ELS
	openssh-server-sysvinit-7.4p1-23.0.5.el7_9.x86_64.rpm	045ca28bdc72d99c7f7775cefd5ece955704a7897af0da92a125349257d50446	-	ol7_x86_64_latest_ELS
	pam_ssh_agent_auth-0.10.3-2.23.0.5.el7_9.i686.rpm	b732300cac95f20a5ca5774d138d85bd015feb9bfe9017e5f2703219a0dd995c	-	ol7_x86_64_latest_ELS
	pam_ssh_agent_auth-0.10.3-2.23.0.5.el7_9.x86_64.rpm	a2806d11e44522d4fcb4a46e152d95e8833303b3a5d53978d9f8c30132b0d47f	-	ol7_x86_64_latest_ELS

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691