OVMSA-2017-0053

OVMSA-2017-0053 - openssh security update

Type:SECURITY
Impact:MODERATE
Release Date:2017-03-29

Description


[5.3p1-122]
- Allow to use ibmca crypto hardware (#1397547)
- CVE-2015-8325: privilege escalation via user's PAM environment and UseLogin=yes (1405374)

[5.3p1-121]
- Fix missing hmac-md5-96 from server offer (#1373836)

[5.3p1-120]
- Prevent infinite loop when Ctrl+Z pressed at password prompt (#1218424)
- Remove RC4 cipher and MD5 based MAC from the default client proposal (#1373836)

[5.3p1-119]
- Resolve sftp force permission colision with umask (#1341747)
- Relax bits needed check to allow hmac-sha2-512 with gss-group1-sha1- (#1353359)
- close ControlPersist background process stderr when not in debug mode (#1335539)
- Do not add a message 'The agent has no identities.' in ~/.ssh/authorized_keys (#1353410)

[5.3p1-118]
- ssh-copy-id: SunOS does not understand ~ (#1327547)


Related CVEs


CVE-2015-8325

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle VM 3.3 (x86_64) openssh-5.3p1-122.el6.src.rpm3db4815b941c72b8fb996c955ff14589c08a87f1808d2a93af89e07f7bd025dbOVMSA-2023-0019ovm3_x86_64_3.3_patch
openssh-5.3p1-122.el6.x86_64.rpm58cdae271715434dab1dd944e51d7ca8e5996e58ed03a6f3d19b6df18b720d50OVMSA-2023-0019ovm3_x86_64_3.3_patch
openssh-clients-5.3p1-122.el6.x86_64.rpm6ffb5003997684828aa3f5e18e0daaeccd304d36c77f66d2c8810518c50d6719OVMSA-2023-0019ovm3_x86_64_3.3_patch
openssh-server-5.3p1-122.el6.x86_64.rpme82a4c7be66c3b4a6bb00d0db1ed5939c39d3a2d6eac5ae4efc4c413505192d1OVMSA-2023-0019ovm3_x86_64_3.3_patch
Oracle VM 3.4 (x86_64) openssh-5.3p1-122.el6.src.rpm3db4815b941c72b8fb996c955ff14589c08a87f1808d2a93af89e07f7bd025dbOVMSA-2023-0019ovm34_x86_64_latest
openssh-5.3p1-122.el6.x86_64.rpm58cdae271715434dab1dd944e51d7ca8e5996e58ed03a6f3d19b6df18b720d50OVMSA-2023-0019ovm34_x86_64_latest
openssh-clients-5.3p1-122.el6.x86_64.rpm6ffb5003997684828aa3f5e18e0daaeccd304d36c77f66d2c8810518c50d6719OVMSA-2023-0019ovm34_x86_64_latest
openssh-server-5.3p1-122.el6.x86_64.rpme82a4c7be66c3b4a6bb00d0db1ed5939c39d3a2d6eac5ae4efc4c413505192d1OVMSA-2023-0019ovm34_x86_64_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete