ALSA-2023:4412

[ALSA-2023:4412] Important: openssh security update

Type:

security

Severity:

important

Release date:

2023-08-02

Description:

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.

Security Fix(es):

* openssh: Remote code execution in ssh-agent PKCS#11 support (CVE-2023-38408)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	openssh-keycat-8.7p1-30.el9_2.aarch64.rpm	ba7b2d27967080f7064352d2c020cbbab41e359930c4d0efadf3eef77973be17
aarch64	openssh-server-8.7p1-30.el9_2.aarch64.rpm	c9a5175fa48a052e3e15f0e9b5f950d441460bc5585c7970e95978566cf401bc
aarch64	openssh-askpass-8.7p1-30.el9_2.aarch64.rpm	d20c684ef544ce8a0956817a5e38100109a074fc51cd890880e09f78746546b5
aarch64	pam_ssh_agent_auth-0.10.4-5.30.el9_2.aarch64.rpm	f044abd11392f4501124a325337032ecca848d366112e2ff58485b4edbc55089
aarch64	openssh-8.7p1-30.el9_2.aarch64.rpm	f5dfe75c2e494d6d4e6e5e5d2b4a9476a9245e77762c266b7255bf175457c6aa
aarch64	openssh-clients-8.7p1-30.el9_2.aarch64.rpm	fd80d876cc2428ab562eb8214765f03cf74370c82ec74924ebd7238c77ddceec
ppc64le	openssh-server-8.7p1-30.el9_2.ppc64le.rpm	3a4ba10ffa4a87aa056b8373db159a55be34be55d034300301db3b5fbc9c3370
ppc64le	openssh-keycat-8.7p1-30.el9_2.ppc64le.rpm	3e1d6f86e126b19c2b624eb04ac09f2de181abeab18a61bc7739805a1041f74f
ppc64le	openssh-clients-8.7p1-30.el9_2.ppc64le.rpm	5223a39a30490d0e2bcee25ea41812f578ba266d7c0a6628902ab45142e3a012
ppc64le	openssh-8.7p1-30.el9_2.ppc64le.rpm	8ad09ba31870cecec6be10bc97cc50d07886b1c4c05a4babc68deb39d9ac6f3c
ppc64le	openssh-askpass-8.7p1-30.el9_2.ppc64le.rpm	b64881d513ec94b5d8745700e3f81af64eb0239e68e524287ed11a5d0dd7db42
ppc64le	pam_ssh_agent_auth-0.10.4-5.30.el9_2.ppc64le.rpm	df74df05d5b43fb81133d3d9538c339ecd5b1776b61a60b573fee0f4032499ce
s390x	openssh-8.7p1-30.el9_2.s390x.rpm	11954ff0b6a8a8039a85650a372c71fe1ad0a0cd073731c2b8d989ff5af68334
s390x	openssh-server-8.7p1-30.el9_2.s390x.rpm	1c225cfd3d93bf98590bb43e87128996f76f68ea18152d14617ffa0571469254
s390x	pam_ssh_agent_auth-0.10.4-5.30.el9_2.s390x.rpm	43051f96993fbc9680fba6144a724eafb3c144ebdde352ab2ebd66834adcf41a
s390x	openssh-keycat-8.7p1-30.el9_2.s390x.rpm	5a2a6803b7bddf67c4a3a0a686ec65231052ee343eccec5576779464682bc4eb
s390x	openssh-askpass-8.7p1-30.el9_2.s390x.rpm	8a66dba2f6f84368086a553ff7a3ab47425658d48e391f5500c8e739b06641c9
s390x	openssh-clients-8.7p1-30.el9_2.s390x.rpm	fea05dfbcfd0f690cb61926ca14e2c2ece16a9041e1fd55ae40a91901ca6fb38
x86_64	openssh-askpass-8.7p1-30.el9_2.x86_64.rpm	1684ec83ca56bea43c5ca7cb7bef4b0feb34fcb2e59c5ce3801fb71cf4db9f05
x86_64	openssh-keycat-8.7p1-30.el9_2.x86_64.rpm	26a529580548cd1947eb1f9ebd3f0f75ee608625d054f7648ea2c3dad380c76e
x86_64	openssh-8.7p1-30.el9_2.x86_64.rpm	5f1fe2e23a4f3b15e3614908b6220d727c896f9767cd165522d2735fb62963a5
x86_64	openssh-clients-8.7p1-30.el9_2.x86_64.rpm	9b654d2cb81eaf99c94236c2f6863883898f016343a6f78d21588120d397bba0
x86_64	pam_ssh_agent_auth-0.10.4-5.30.el9_2.x86_64.rpm	bdbd4e0ebf92f09e771ae18e64ab89719218f1654b8c8c4ef90a78258e3c4cef
x86_64	openssh-server-8.7p1-30.el9_2.x86_64.rpm	da90844d55f0d08635a5354370642c4d4e3ad28d5205980d5088c022bd215d5e

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.