ELSA-2026-6461

ULN >
Oracle Linux Errata repository >
ELSA-2026-6461

ELSA-2026-6461 - openssh security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-04-02

Description

[8.0p1-28.0.1]
- Update upstream references [Orabug: 36587718]

[8.0p1-28]
- CVE-2026-3497: Fix information disclosure or denial of service due
to uninitialized variables in gssapi-keyex
Resolves: RHEL-155814

Related CVEs

CVE-2026-3497

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssh-8.0p1-28.0.1.el8_10.src.rpm	e2e7ce849980515200b1f37f4e6d933bab2c8124900e125b0043472159c7dec9	-	ol8_aarch64_appstream
	openssh-8.0p1-28.0.1.el8_10.src.rpm	e2e7ce849980515200b1f37f4e6d933bab2c8124900e125b0043472159c7dec9	-	ol8_aarch64_baseos_latest
	openssh-8.0p1-28.0.1.el8_10.src.rpm	e2e7ce849980515200b1f37f4e6d933bab2c8124900e125b0043472159c7dec9	-	ol8_aarch64_u10_baseos_patch
	openssh-8.0p1-28.0.1.el8_10.aarch64.rpm	d39dd5a6e568f4486d03f9920eadf0c4c9fbdc63153afea80ea92dc79e492e88	-	ol8_aarch64_baseos_latest
	openssh-8.0p1-28.0.1.el8_10.aarch64.rpm	d39dd5a6e568f4486d03f9920eadf0c4c9fbdc63153afea80ea92dc79e492e88	-	ol8_aarch64_u10_baseos_patch
	openssh-askpass-8.0p1-28.0.1.el8_10.aarch64.rpm	1b38a4be32ebe5cd3433c971453599377a5e0ba2e213f03491f68935ef3eddb4	-	ol8_aarch64_appstream
	openssh-cavs-8.0p1-28.0.1.el8_10.aarch64.rpm	8d1236ebecd1787e96a2696b6d5a005f1949ff49a7851d6016e8a2ac5900ac3f	-	ol8_aarch64_baseos_latest
	openssh-cavs-8.0p1-28.0.1.el8_10.aarch64.rpm	8d1236ebecd1787e96a2696b6d5a005f1949ff49a7851d6016e8a2ac5900ac3f	-	ol8_aarch64_u10_baseos_patch
	openssh-clients-8.0p1-28.0.1.el8_10.aarch64.rpm	23d5425b8255a46ef654e8ccfe8fb8bd761bab444b136b7c810d15c1febfb32a	-	ol8_aarch64_baseos_latest
	openssh-clients-8.0p1-28.0.1.el8_10.aarch64.rpm	23d5425b8255a46ef654e8ccfe8fb8bd761bab444b136b7c810d15c1febfb32a	-	ol8_aarch64_u10_baseos_patch
	openssh-keycat-8.0p1-28.0.1.el8_10.aarch64.rpm	b0ffa29ec5a3d8996bab9fe12c4c603caa2c877a086ff35145927a3b8a7ddc5e	-	ol8_aarch64_baseos_latest
	openssh-keycat-8.0p1-28.0.1.el8_10.aarch64.rpm	b0ffa29ec5a3d8996bab9fe12c4c603caa2c877a086ff35145927a3b8a7ddc5e	-	ol8_aarch64_u10_baseos_patch
	openssh-ldap-8.0p1-28.0.1.el8_10.aarch64.rpm	d7d584f299f046b5bf44e2eb6d5d49f48b5bae3cdc11c1f480b873850455cdc8	-	ol8_aarch64_baseos_latest
	openssh-ldap-8.0p1-28.0.1.el8_10.aarch64.rpm	d7d584f299f046b5bf44e2eb6d5d49f48b5bae3cdc11c1f480b873850455cdc8	-	ol8_aarch64_u10_baseos_patch
	openssh-server-8.0p1-28.0.1.el8_10.aarch64.rpm	276b42642b0e10fee461380762547ee93905970ee720a5502ffa4d5cfa60b4a8	-	ol8_aarch64_baseos_latest
	openssh-server-8.0p1-28.0.1.el8_10.aarch64.rpm	276b42642b0e10fee461380762547ee93905970ee720a5502ffa4d5cfa60b4a8	-	ol8_aarch64_u10_baseos_patch
	pam_ssh_agent_auth-0.10.3-7.28.0.1.el8_10.aarch64.rpm	1e21d187c1b221089f4d351b23a7282d5bebcfad3cb33961845d9d4ff1d39aec	-	ol8_aarch64_baseos_latest
	pam_ssh_agent_auth-0.10.3-7.28.0.1.el8_10.aarch64.rpm	1e21d187c1b221089f4d351b23a7282d5bebcfad3cb33961845d9d4ff1d39aec	-	ol8_aarch64_u10_baseos_patch

Oracle Linux 8 (x86_64)	openssh-8.0p1-28.0.1.el8_10.src.rpm	e2e7ce849980515200b1f37f4e6d933bab2c8124900e125b0043472159c7dec9	-	ol8_x86_64_appstream
	openssh-8.0p1-28.0.1.el8_10.src.rpm	e2e7ce849980515200b1f37f4e6d933bab2c8124900e125b0043472159c7dec9	-	ol8_x86_64_baseos_latest
	openssh-8.0p1-28.0.1.el8_10.src.rpm	e2e7ce849980515200b1f37f4e6d933bab2c8124900e125b0043472159c7dec9	-	ol8_x86_64_u10_baseos_patch
	openssh-8.0p1-28.0.1.el8_10.x86_64.rpm	eee25fdc816060844e8737cfcbb1dc5163330bfdb75722e0d309731ac863018f	-	ol8_x86_64_baseos_latest
	openssh-8.0p1-28.0.1.el8_10.x86_64.rpm	eee25fdc816060844e8737cfcbb1dc5163330bfdb75722e0d309731ac863018f	-	ol8_x86_64_u10_baseos_patch
	openssh-askpass-8.0p1-28.0.1.el8_10.x86_64.rpm	77b1c9b1e087cabefccf7766caf1bface8fb5604cb495779c468e1cfe6e716b4	-	ol8_x86_64_appstream
	openssh-cavs-8.0p1-28.0.1.el8_10.x86_64.rpm	d5e16a789f4249b3b955bf99a7925151a54677e11c2986ac4e7820c08495cd63	-	ol8_x86_64_baseos_latest
	openssh-cavs-8.0p1-28.0.1.el8_10.x86_64.rpm	d5e16a789f4249b3b955bf99a7925151a54677e11c2986ac4e7820c08495cd63	-	ol8_x86_64_u10_baseos_patch
	openssh-clients-8.0p1-28.0.1.el8_10.x86_64.rpm	01e3dd4cb1dc45781576c4be08eb186df7326bdcf028520287eb9a673ff51cbc	-	ol8_x86_64_baseos_latest
	openssh-clients-8.0p1-28.0.1.el8_10.x86_64.rpm	01e3dd4cb1dc45781576c4be08eb186df7326bdcf028520287eb9a673ff51cbc	-	ol8_x86_64_u10_baseos_patch
	openssh-keycat-8.0p1-28.0.1.el8_10.x86_64.rpm	f73df9da6b9d4251a2e990d54ae06168721881db05f58f48469f23fcaf123d76	-	ol8_x86_64_baseos_latest
	openssh-keycat-8.0p1-28.0.1.el8_10.x86_64.rpm	f73df9da6b9d4251a2e990d54ae06168721881db05f58f48469f23fcaf123d76	-	ol8_x86_64_u10_baseos_patch
	openssh-ldap-8.0p1-28.0.1.el8_10.x86_64.rpm	f79ff90732f7e070566d7aca3e8737d772004e64b4a9dbfd8c1050c63e7a6308	-	ol8_x86_64_baseos_latest
	openssh-ldap-8.0p1-28.0.1.el8_10.x86_64.rpm	f79ff90732f7e070566d7aca3e8737d772004e64b4a9dbfd8c1050c63e7a6308	-	ol8_x86_64_u10_baseos_patch
	openssh-server-8.0p1-28.0.1.el8_10.x86_64.rpm	fd542f030863fb5ea7cff719e3bff215e16731d72bbbbc7d58d45877a2dd9507	-	ol8_x86_64_baseos_latest
	openssh-server-8.0p1-28.0.1.el8_10.x86_64.rpm	fd542f030863fb5ea7cff719e3bff215e16731d72bbbbc7d58d45877a2dd9507	-	ol8_x86_64_u10_baseos_patch
	pam_ssh_agent_auth-0.10.3-7.28.0.1.el8_10.x86_64.rpm	db72f150a68d590b89337d9bede7ef6962d2015a952189be67ebaf85f72dcad6	-	ol8_x86_64_baseos_latest
	pam_ssh_agent_auth-0.10.3-7.28.0.1.el8_10.x86_64.rpm	db72f150a68d590b89337d9bede7ef6962d2015a952189be67ebaf85f72dcad6	-	ol8_x86_64_u10_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691