[ALSA-2025:6993] Moderate: openssh security update
Type:
security
Severity:
moderate
Release date:
2025-06-05
Description:
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fix(es): * openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled (CVE-2025-26465) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinuxRelease Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 openssh-clients-8.7p1-45.el9.aarch64.rpm 160af8a6ed733e5c01bcbba70a382feec74ebd9cbab684da6cffaa9c8d6f8609
aarch64 openssh-8.7p1-45.el9.aarch64.rpm 4ee44277b0d331bf1f477c4c692750d0f213372f10b27e9b36613b61d0af5b31
aarch64 openssh-server-8.7p1-45.el9.aarch64.rpm 8313f435a96b92a109ebce1699b8e4228cf6bf212a386e5d3b42df1de0c3b68c
aarch64 openssh-keycat-8.7p1-45.el9.aarch64.rpm 9619165c908913779dcefdde9d2b01cf86bad16652aea714fb3ce5fe292a306b
aarch64 openssh-askpass-8.7p1-45.el9.aarch64.rpm 9b378064650eb8e4893911189042efaa7101145a17e5ecd5b53ffee0e06bb3e9
aarch64 pam_ssh_agent_auth-0.10.4-5.45.el9.aarch64.rpm bac95cefa624042a4c965253ee4ddff9ddc03b00cbc17a5c2c5ba179bbcf6573
ppc64le openssh-keycat-8.7p1-45.el9.ppc64le.rpm 1db5e26729bddcbd76b6e5fa28fd09f2fde8d38398f3bd4bd6732db8a25232ea
ppc64le openssh-askpass-8.7p1-45.el9.ppc64le.rpm 8c354a0df1a225ae2f4b004309116d03782e054d03b2b6d2d85c4320a6dc0db0
ppc64le pam_ssh_agent_auth-0.10.4-5.45.el9.ppc64le.rpm a4b6a6576cb0b052528e7618f79b2215f480a58c5131de1f7813179d999c5b90
ppc64le openssh-server-8.7p1-45.el9.ppc64le.rpm b75a5a3fe44c3eb2eb10dac5c5c24ecc9dbeaaebfc5fc1024a1df64a63ba35ce
ppc64le openssh-clients-8.7p1-45.el9.ppc64le.rpm c25c05f5207b28db401516212f283737b1ce704038e365f87ca0f870da694d60
ppc64le openssh-8.7p1-45.el9.ppc64le.rpm d302435a773e71a3c737b1d20d65e82703edf322b5f22df61f72184de8a1f1df
s390x openssh-askpass-8.7p1-45.el9.s390x.rpm 04251f93248498b52ad23997c42efc88b7462bf76fc143ec504e75c87c70c4b2
s390x openssh-keycat-8.7p1-45.el9.s390x.rpm 2cbc6eff7c828224af1841e514f70677a819f79853ea2402b289bddca5c2e2be
s390x openssh-clients-8.7p1-45.el9.s390x.rpm 7a13ebe7bf39ccf051c3b254bf3f8ec3383613a45f22a8d7131480fc310f3abd
s390x openssh-server-8.7p1-45.el9.s390x.rpm 822f59b2510066233d981e6b945d2d1ffaf322452471f86c8195e48cb965b4ff
s390x openssh-8.7p1-45.el9.s390x.rpm 830384bc7781867fc0de42ac74b949005d5399956ff5383b6c86b0c4b849cc4a
s390x pam_ssh_agent_auth-0.10.4-5.45.el9.s390x.rpm bda81030ed6b55b6ca8cc88243fb477eda9d3a5bd3a2d861d20e77b146425a12
x86_64 openssh-8.7p1-45.el9.x86_64.rpm 29ad4e9588bd0539b6e4b3b762a6556eccba66a3a669e43d269d68f98c7c6a26
x86_64 openssh-server-8.7p1-45.el9.x86_64.rpm 3bd77eab3979778e5ded23a006119008587e3e86f760c98ffd0b1f98b040847b
x86_64 openssh-clients-8.7p1-45.el9.x86_64.rpm 6d772ae3105cce1852848aeed381de2f2e253efea4b0451a5043afff7cdb0ef3
x86_64 openssh-askpass-8.7p1-45.el9.x86_64.rpm a6135ae2760ee28e3b6af788372a78b8fb832ae569fbf52eb67953f6c732782c
x86_64 openssh-keycat-8.7p1-45.el9.x86_64.rpm d371c435f0055ea819bc7dfc16a219f2301d34d1d8b8a95e541cb0342a78eb4b
x86_64 pam_ssh_agent_auth-0.10.4-5.45.el9.x86_64.rpm ed94aa4205c83b3324e699c2d6495e56dcd46bce1ec99602cf0428d6fe8135f6
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.