[El-errata] ELSA-2016-0465 Moderate: Oracle Linux 7 openssh security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Mon Mar 21 16:24:33 PDT 2016
Oracle Linux Security Advisory ELSA-2016-0465
http://linux.oracle.com/errata/ELSA-2016-0465.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
openssh-6.6.1p1-25.el7_2.x86_64.rpm
openssh-askpass-6.6.1p1-25.el7_2.x86_64.rpm
openssh-clients-6.6.1p1-25.el7_2.x86_64.rpm
openssh-keycat-6.6.1p1-25.el7_2.x86_64.rpm
openssh-ldap-6.6.1p1-25.el7_2.x86_64.rpm
openssh-server-6.6.1p1-25.el7_2.x86_64.rpm
openssh-server-sysvinit-6.6.1p1-25.el7_2.x86_64.rpm
pam_ssh_agent_auth-0.9.3-9.25.el7_2.i686.rpm
pam_ssh_agent_auth-0.9.3-9.25.el7_2.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/openssh-6.6.1p1-25.el7_2.src.rpm
Description of changes:
[6.6.1p1-25 + 0.9.3-9]
- CVE-2016-1908: possible fallback from untrusted to trusted X11
forwarding (#1298741)
[6.6.1p1-24 + 0.9.3-9]
- CVE-2016-3115: missing sanitisation of input for X11 forwarding (#1317818)
More information about the El-errata
mailing list