ELSA-2026-50325

ELSA-2026-50325 - openssh security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-06-25

Description


[7.4p1-23.0.5_fips]
- Fix privilege escalation via scp legacy protocol when not in preserving
file mode [CVE-2026-35385][Orabug: 39480251]

[7.4p1-23.0.3_fips]
- Change Epoch from 1 to 10
- Enable fips KDF POST [Orabug: 32461750]
- Disable diffie-hellman-group-exchange-sha256 KEX FIPS method [Orabug: 32461739]


Related CVEs


CVE-2026-35385

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) openssh-7.4p1-23.0.5.el7_9_fips.src.rpm0a6823820a3716b065bec56fd2d8ae568491bad353cb0f0c49c7365529a7483d-ol7_aarch64_u8_security_validation
openssh-7.4p1-23.0.5.el7_9_fips.aarch64.rpmdee721a8f707b46c6c1eaf385f66d651fadbb838e38ccc40d0484248a64cb886-ol7_aarch64_u8_security_validation
openssh-askpass-7.4p1-23.0.5.el7_9_fips.aarch64.rpma8555b59688da718ad0e4d9dc0b1cee68fb392325217cab903a75a6b36d7fc05-ol7_aarch64_u8_security_validation
openssh-cavs-7.4p1-23.0.5.el7_9_fips.aarch64.rpmfdae4031bf758d85d9a8c845e372cbcf52a878fba808848108dfd4c62539badd-ol7_aarch64_u8_security_validation
openssh-clients-7.4p1-23.0.5.el7_9_fips.aarch64.rpm0b208dd4feafa6baea8bca15734e43f091f75b56abd9f8902482588be82e81a9-ol7_aarch64_u8_security_validation
openssh-keycat-7.4p1-23.0.5.el7_9_fips.aarch64.rpm50ca41b8e41c90c3b0117cc5efc605d00c76378571d8de5bd970da581d9aaa39-ol7_aarch64_u8_security_validation
openssh-ldap-7.4p1-23.0.5.el7_9_fips.aarch64.rpmbd41967d7dcc420fd73aa07050b05f675f5182777684966bed05f7101215d231-ol7_aarch64_u8_security_validation
openssh-server-7.4p1-23.0.5.el7_9_fips.aarch64.rpm4be2be589081fa8f2b651485c5c7f0d99e8768a36644d926abde364e9cb5a0b1-ol7_aarch64_u8_security_validation
openssh-server-sysvinit-7.4p1-23.0.5.el7_9_fips.aarch64.rpm58330b13a66901dd9c3ea2e8df6339bddcc6d72b254a30ac5245d42ec9ee10b5-ol7_aarch64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.23.0.5.el7_9_fips.aarch64.rpmaec0527e8c479407c84606ce804486035c6518680f83b0c6ab1ac4682abeb53c-ol7_aarch64_u8_security_validation
Oracle Linux 7 (x86_64) openssh-7.4p1-23.0.5.el7_9_fips.src.rpm0a6823820a3716b065bec56fd2d8ae568491bad353cb0f0c49c7365529a7483d-ol7_x86_64_u8_security_validation
openssh-7.4p1-23.0.5.el7_9_fips.x86_64.rpm18b29dda19017bb80ce81f5486074941e2aec232aabcefebc2c204fd19b7404a-ol7_x86_64_u8_security_validation
openssh-askpass-7.4p1-23.0.5.el7_9_fips.x86_64.rpm67a664671f274f945f9a79ca466aaa1e72cb22225f58f898653b3138954dc912-ol7_x86_64_u8_security_validation
openssh-cavs-7.4p1-23.0.5.el7_9_fips.x86_64.rpm278caae86169c9ac30196b598c6273bbdaa93e9c8fee72a4b3faaec7f74a55fd-ol7_x86_64_u8_security_validation
openssh-clients-7.4p1-23.0.5.el7_9_fips.x86_64.rpma653c2a1b2522206ac76be5a89182f93eb2f62e70dc46e04cccaaacadff2ee25-ol7_x86_64_u8_security_validation
openssh-keycat-7.4p1-23.0.5.el7_9_fips.x86_64.rpm2321d2a6b9cdd02304e9f69ffa243c5b567615cbe4fd69943026a06900dd3edd-ol7_x86_64_u8_security_validation
openssh-ldap-7.4p1-23.0.5.el7_9_fips.x86_64.rpm21a09eb859b726ccae1e316534259810f0befaef9e5d317863ba7d6da51e6a77-ol7_x86_64_u8_security_validation
openssh-server-7.4p1-23.0.5.el7_9_fips.x86_64.rpm4ea8085d1ecf002c09095bc7530c99b3107656d688c4e691c0ff09803648a217-ol7_x86_64_u8_security_validation
openssh-server-sysvinit-7.4p1-23.0.5.el7_9_fips.x86_64.rpmb1e3e0f414d21bab78142518bac366877515428561f9b6100b52e2914304176b-ol7_x86_64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.23.0.5.el7_9_fips.i686.rpm9a9d50b234e02f25e9fef11d20b0adeca0b0fad42468b15bd83a67f2e57799d9-ol7_x86_64_u8_security_validation
pam_ssh_agent_auth-0.10.3-2.23.0.5.el7_9_fips.x86_64.rpm3a01a1a99eeca038e1189e4f4b8467184328cee041e13087dcc5bca8aa1ad51f-ol7_x86_64_u8_security_validation



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete