[El-errata] ELSA-2012-0884 Low: Oracle Linux 6 openssh security, bug fix, and enhancement update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon Jul 2 19:54:54 PDT 2012


Oracle Linux Security Advisory ELSA-2012-0884

https://rhn.redhat.com/errata/RHSA-2012-0884.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
openssh-5.3p1-81.el6.i686.rpm
openssh-askpass-5.3p1-81.el6.i686.rpm
openssh-clients-5.3p1-81.el6.i686.rpm
openssh-ldap-5.3p1-81.el6.i686.rpm
openssh-server-5.3p1-81.el6.i686.rpm
pam_ssh_agent_auth-0.9-81.el6.i686.rpm

x86_64:
openssh-5.3p1-81.el6.x86_64.rpm
openssh-askpass-5.3p1-81.el6.x86_64.rpm
openssh-clients-5.3p1-81.el6.x86_64.rpm
openssh-ldap-5.3p1-81.el6.x86_64.rpm
openssh-server-5.3p1-81.el6.x86_64.rpm
pam_ssh_agent_auth-0.9-81.el6.i686.rpm
pam_ssh_agent_auth-0.9-81.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/openssh-5.3p1-81.el6.src.rpm



Description of changes:

[5.3p1-81]
- fixes in openssh-5.3p1-required-authentications.patch (#657378)

[5.3p1-79]
- fix forward on non-localhost ports with IPv6 (#732955)

[5.3p1-78]
- clear SELinux exec context before exec passwd (#814691)

[5.3p1-77]
- prevent post-auth resource exhaustion (#809938)

[5.3p1-76]
- don't escape backslah in a banner (#809619)

[5.3p1-75]
- fix various issues in openssh-5.3p1-required-authentications.patch 
(#805901)

[5.3p1-74]
- fix out-of-memory killer patch (#744236)

[5.3p1-73]
- remove openssh-4.3p2-no-v6only.patch (#732955)
- adjust Linux out-of-memory killer (#744236)
- fix sshd init script - check existence of crypto (#797384)
- add RequiredAuthentications[12] (#657378)
- run privsep slave process as the users SELinux context (#798241)

[5.3p1-72]
- drop CAVS test driver (#782091)

[5.3p1-71]
- enable aes-ctr ciphers use the EVP engines from OpenSSL such as the 
AES-NI (#756929)
- add CAVS test driver for the aes-ctr ciphers (#782091)





More information about the El-errata mailing list