ALSA-2026:6461

[ALSA-2026:6461] Important: openssh security update

Type:

security

Severity:

important

Release date:

2026-04-09

Description:

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.  

Security Fix(es):  

  * openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables (CVE-2026-3497)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	openssh-keycat-8.0p1-28.el8_10.aarch64.rpm	082cfffd7d2927bedc8ef93702057cc28c8345951f586236d42fa42dad93e0f5
aarch64	openssh-ldap-8.0p1-28.el8_10.aarch64.rpm	1d1fc904f3c94f85ec10d177fb181e98f21c6a6c3084cb15f4e8e16f9400e3a4
aarch64	pam_ssh_agent_auth-0.10.3-7.28.el8_10.aarch64.rpm	24c90799560eb0fa0ac355c9a635f171a267672f18fd02c1c5c2de093aef9af3
aarch64	openssh-askpass-8.0p1-28.el8_10.aarch64.rpm	2d55e5df2fb8e13589cd6545ddd6e3bb3567607e17f2ac20ab1e975e6249b984
aarch64	openssh-cavs-8.0p1-28.el8_10.aarch64.rpm	45faba71ed3145d674bd389f75348973c0f9cf1cef76055f5c6df3f5af866e67
aarch64	openssh-8.0p1-28.el8_10.aarch64.rpm	8759607e41b0c0bf44a2e6562fe60a665e7ebaf8beee89e3ae5e672851ae5c2b
aarch64	openssh-clients-8.0p1-28.el8_10.aarch64.rpm	90bd687526b6ccae7080b12e4c093fbb946a2bfcee93a96b469ec4e6860ee806
aarch64	openssh-server-8.0p1-28.el8_10.aarch64.rpm	b59e65d4302dcb8f58f105922cc538a38f515036b5f0212dd2b4e731f9b091cd
ppc64le	openssh-clients-8.0p1-28.el8_10.ppc64le.rpm	04ab17bbd02425a2e47ae48bcbac2eb70ad1e826e67fd20ab601d96ab254f37d
ppc64le	openssh-keycat-8.0p1-28.el8_10.ppc64le.rpm	0560b8044ceb5c07f6d24e682ba8273407e3e788572a746d818d0f99ec4c9f4d
ppc64le	openssh-server-8.0p1-28.el8_10.ppc64le.rpm	2a29084ff4ff27d65620c3cd2a0e4e68750b0b4d9ed79d1e56c0e965c13177f8
ppc64le	pam_ssh_agent_auth-0.10.3-7.28.el8_10.ppc64le.rpm	514ae7e30c9f53017658bece6ca10d12b0e21844cfbd831681da0d6130c67942
ppc64le	openssh-ldap-8.0p1-28.el8_10.ppc64le.rpm	5324b7908fec80f93c1c195a60b2bc6ed4aeae8e1a98f2871fb2de25ccb30c43
ppc64le	openssh-8.0p1-28.el8_10.ppc64le.rpm	aa2328e55cb9607d2131282f86e58fb5f88f09a761d3a3c1414a1d45a6fcf369
ppc64le	openssh-cavs-8.0p1-28.el8_10.ppc64le.rpm	aff596d050570ae88153e48e1a1b2663c1cd9af07e18bd552e8a9cce08060ff4
ppc64le	openssh-askpass-8.0p1-28.el8_10.ppc64le.rpm	f94f09dcfdd494f7d6ff49f66f3a15551c9cf4bcd15aad7bce59ca368642f7df
s390x	openssh-server-8.0p1-28.el8_10.s390x.rpm	2a07e4597b5f480bd80c87b5969db768c5657a1821d397d559acff2c24e9acaf
s390x	openssh-keycat-8.0p1-28.el8_10.s390x.rpm	70de43ef7e41bff6a28837b9ffabdc4e0551a0e7e23606ab9c0a38ebc599cba7
s390x	pam_ssh_agent_auth-0.10.3-7.28.el8_10.s390x.rpm	91919ec62bfcf5302eea7074d70bbffa1171c15bcc38bfb0269c372e406a8e26
s390x	openssh-askpass-8.0p1-28.el8_10.s390x.rpm	b825aec758045954f9bfdf05d555bae4dd7d1ef585461520bb4932bfa3014b0c
s390x	openssh-clients-8.0p1-28.el8_10.s390x.rpm	c37c4bb618a98f75ac32e50899ada846d142c822c81068d54ba707b138b0185e
s390x	openssh-cavs-8.0p1-28.el8_10.s390x.rpm	ebb2908c381f79bb6efe6e64be8f3ce149b8e25cf679fbd1eaafdbe75f656cd9
s390x	openssh-8.0p1-28.el8_10.s390x.rpm	f0a2028f9d5e80de03657f4b5abc988c3c80efa5647b86244103b81b2da53238
s390x	openssh-ldap-8.0p1-28.el8_10.s390x.rpm	f96c0a740fc3b4f9c1e8232c0eaae8a7f12e215c9f48e3afb0bb53d79757e60e
x86_64	openssh-server-8.0p1-28.el8_10.x86_64.rpm	29b285b8ff679e42b3f1417afb92f5a015ac7fefb0c2cf2c03a5a10d21714276
x86_64	pam_ssh_agent_auth-0.10.3-7.28.el8_10.x86_64.rpm	2dcc158bd461a29f446c11c783a1b4d7679c7ec8d9cd54de6963a1150310ae54
x86_64	openssh-8.0p1-28.el8_10.x86_64.rpm	3af14a7a43f3c84c5f127fad09805c516c39caa0e55586dac66e3098d25c58bb
x86_64	openssh-keycat-8.0p1-28.el8_10.x86_64.rpm	3c73691a4f132eaf3073fc47903781a0abc84500bff26fd9d12b7775c0729b9b
x86_64	openssh-cavs-8.0p1-28.el8_10.x86_64.rpm	4db698d7b4fa5a1d1a6f84bfad3545f294c14aae5880f3a017fc222d98673ddb
x86_64	openssh-clients-8.0p1-28.el8_10.x86_64.rpm	7389e9ba1d75a5ae271d0d05171ade92f00559a1ffeef8a1de933db42b46bf16
x86_64	openssh-ldap-8.0p1-28.el8_10.x86_64.rpm	d0f37e31d6b68af9c25bd4d41775d94598fdb63a6611896bcd43fefc32081f75
x86_64	openssh-askpass-8.0p1-28.el8_10.x86_64.rpm	eecabbd3688d46ac411687a3852c57307835eb1f6559909c0efcdf16edb11fa3

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.