[Oraclevm-errata] OVMSA-2016-0038 Moderate: Oracle VM 3.4 openssh security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Thu Mar 24 12:48:04 PDT 2016
Oracle VM Security Advisory OVMSA-2016-0038
The following updated rpms for Oracle VM 3.4 have been uploaded to the
Unbreakable Linux Network:
x86_64:
openssh-5.3p1-114.el6_7.x86_64.rpm
openssh-clients-5.3p1-114.el6_7.x86_64.rpm
openssh-server-5.3p1-114.el6_7.x86_64.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/openssh-5.3p1-114.el6_7.src.rpm
Description of changes:
[5.3p1-114]
- CVE-2015-5600: MaxAuthTries limit bypass via duplicates in
KbdInteractiveDevices (#1245969)
[5.3p1-113]
- CVE-2016-3115: missing sanitisation of input for X11 forwarding (#1317816)
More information about the Oraclevm-errata
mailing list