[Oraclevm-errata] OVMSA-2017-0053 Moderate: Oracle VM 3.3 openssh security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Wed Mar 29 13:05:06 PDT 2017

Oracle VM Security Advisory OVMSA-2017-0053

The following updated rpms for Oracle VM 3.3 have been uploaded to the 
Unbreakable Linux Network:



Description of changes:

- Allow to use ibmca crypto hardware (#1397547)
- CVE-2015-8325: privilege escalation via user's PAM environment and 
UseLogin=yes (1405374)

- Fix missing hmac-md5-96 from server offer (#1373836)

- Prevent infinite loop when Ctrl+Z pressed at password prompt (#1218424)
- Remove RC4 cipher and MD5 based MAC from the default client proposal 

- Resolve sftp force permission colision with umask (#1341747)
- Relax bits needed check to allow hmac-sha2-512 with gss-group1-sha1- 
- close ControlPersist background process stderr when not in debug mode 
- Do not add a message "The agent has no identities." in 
~/.ssh/authorized_keys (#1353410)

- ssh-copy-id: SunOS does not understand ~ (#1327547)

More information about the Oraclevm-errata mailing list