[ALSA-2022:2013] Moderate: openssh security, bug fix, and enhancement update
Type:
security
Severity:
moderate
Release date:
2022-05-10
Description:
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fix(es): * openssh: privilege escalation when AuthorizedKeysCommand or AuthorizedPrincipalsCommand are configured (CVE-2021-41617) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 pam_ssh_agent_auth-0.10.3-7.13.el8.aarch64.rpm 04fa8da32e63351fecb4a3801cfe9c535b4fc89bcf69360006fcc54b68837d06
aarch64 openssh-ldap-8.0p1-13.el8.aarch64.rpm 308fb832eeaa6b2d3c3263ae4772fc241ba54ce1bc5d3d446f4505ace28a2d2a
aarch64 openssh-server-8.0p1-13.el8.aarch64.rpm 4e9f31919bccb62ba307458735fc14729e157f031d251d1a35e7e810cb970ecf
aarch64 openssh-askpass-8.0p1-13.el8.aarch64.rpm 540537f75b9400e848cf5cf2200bacfe3dbf09689e62df8e56760434ffbab19f
aarch64 openssh-cavs-8.0p1-13.el8.aarch64.rpm 5c2a7dcfdfb31ec427eb11d5b8a26e17a413800baee01ef7801eb66c1b04f78c
aarch64 openssh-keycat-8.0p1-13.el8.aarch64.rpm 5cfc01289b750e5f73235b228bedc89520dcb337f526c8f0046629471c621303
aarch64 openssh-clients-8.0p1-13.el8.aarch64.rpm 8426d51f35c496f04f724b1b1ef9a88cf6235a760b7951f9d3b80a03152b9f31
aarch64 openssh-8.0p1-13.el8.aarch64.rpm a2e4a60dfa5985b89efe5f2efd582daad5506dbe8f5f9062519bf886ce239b17
ppc64le openssh-askpass-8.0p1-13.el8.ppc64le.rpm 010cd2503d0d30c1e3dcfe43c6f898a872899c529b9e3ef3a5ca56f5ce0787d6
ppc64le pam_ssh_agent_auth-0.10.3-7.13.el8.ppc64le.rpm 025e5a2baa51c6cd727c7729bd4c07ccd86f3a765e03bf06f103cd896db190b3
ppc64le openssh-keycat-8.0p1-13.el8.ppc64le.rpm 07d283ddf6b0b9c236ba476346e0b09872fd4a77bfe56eaec602412d9e6e6224
ppc64le openssh-ldap-8.0p1-13.el8.ppc64le.rpm 43b9a02ab11c99affb196f98b25b9889f228e923c0ce172251b3ab764646998a
ppc64le openssh-8.0p1-13.el8.ppc64le.rpm 60dcfe6f368710f5f159d067c04456abfb59e36fc652da8d3b6db0b147686c16
ppc64le openssh-clients-8.0p1-13.el8.ppc64le.rpm 6c847a821e4382260f9b64ffcda088639992bc2ee795a49f14f25e7d6ad819b1
ppc64le openssh-cavs-8.0p1-13.el8.ppc64le.rpm 9265562c3ceac50993533bf293b8b764715165002cfaaec8df3227689bb9db6e
ppc64le openssh-server-8.0p1-13.el8.ppc64le.rpm 9d64b0e8a32308106d313253c496b0576ae53a1194478a00037fb167c25f89a5
x86_64 openssh-ldap-8.0p1-13.el8.x86_64.rpm 16ae3abfd7f6c11a6a73792125af861361c2e335e6a4f578335055787c6666b5
x86_64 openssh-keycat-8.0p1-13.el8.x86_64.rpm 1f60e7d69b5c15b53d23155a3aac90ec685968c873eae3036782fb806fc252e0
x86_64 openssh-cavs-8.0p1-13.el8.x86_64.rpm 7002fb6b3021fa65f7706f913876716418897cb7ca9907b43a363d685d45078c
x86_64 openssh-8.0p1-13.el8.x86_64.rpm 757ca89f7e3a089b73015b9158f00b1bb745426a14aa0d18c3b5c7a925934dfe
x86_64 openssh-askpass-8.0p1-13.el8.x86_64.rpm 9c3becada19d1783c7a5a30b1a2b03ee64889e0873583a018c496f9f5c2b1fd8
x86_64 openssh-server-8.0p1-13.el8.x86_64.rpm b343e40ef9f2983895d8b289d12f0b3a9525d5e28ef3ee103138f402598a9d5f
x86_64 openssh-clients-8.0p1-13.el8.x86_64.rpm d27d870590f8896c73dcffed14611cb1781675921e2e2cfa2914384086f24f18
x86_64 pam_ssh_agent_auth-0.10.3-7.13.el8.x86_64.rpm fa5ff65b8cf0b6bdc1aa990fd4b373d677580ac23ccc4a3959014040a08534fd
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.