OVMSA-2018-0034

OVMSA-2018-0034 - python-paramiko security update

Type:SECURITY
Severity:CRITICAL
Release Date:2018-04-17

Description


[1.7.5-4]
- Fix and enable tests (%check).
- Backport a change which makes tests exit with nonzero status when they fail.
- Add a fix for upstream tests for CVE-2018-7750 (broken in previous).

[1.7.5-3]
- Fix a security flaw (CVE-2018-7750) in Paramiko's server mode
(emphasis on **server** mode; this does **not** impact *client* use!)
Backported from 1.10: https://gist.github.com/stevebeattie/0eb190004e10ba0926ad8782f89676ad
Resolves #1557140


Related CVEs


CVE-2018-7750

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.3 (x86_64) python-paramiko-1.7.5-4.el6_9.src.rpmfe7a68d89da632bd53de3b98ffdc7a2aOVMSA-2018-0270
python-paramiko-1.7.5-4.el6_9.noarch.rpm9dd07c84303222a99ae563a07f1472e7OVMSA-2018-0270
Oracle VM 3.4 (x86_64) python-paramiko-1.7.5-4.el6_9.src.rpmfe7a68d89da632bd53de3b98ffdc7a2aOVMSA-2018-0270
python-paramiko-1.7.5-4.el6_9.noarch.rpm9dd07c84303222a99ae563a07f1472e7OVMSA-2018-0270



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete