[El-errata] ELSA-2018-0980 Low: Oracle Linux 7 openssh security, bug fix, and enhancement update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Apr 17 10:57:09 PDT 2018
Oracle Linux Security Advisory ELSA-2018-0980
http://linux.oracle.com/errata/ELSA-2018-0980.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
openssh-7.4p1-16.el7.x86_64.rpm
openssh-askpass-7.4p1-16.el7.x86_64.rpm
openssh-cavs-7.4p1-16.el7.x86_64.rpm
openssh-clients-7.4p1-16.el7.x86_64.rpm
openssh-keycat-7.4p1-16.el7.x86_64.rpm
openssh-ldap-7.4p1-16.el7.x86_64.rpm
openssh-server-7.4p1-16.el7.x86_64.rpm
openssh-server-sysvinit-7.4p1-16.el7.x86_64.rpm
pam_ssh_agent_auth-0.10.3-2.16.el7.i686.rpm
pam_ssh_agent_auth-0.10.3-2.16.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/openssh-7.4p1-16.el7.src.rpm
Description of changes:
[7.4p1-16 + 0.10.3-2]
- Fix for CVE-2017-15906 (#1517226)
[7.4p1-15 + 0.10.3-2]
- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
[7.4p1-14 + 0.10.3-2]
- Rebuilt for RHEL-7.5
More information about the El-errata
mailing list