Project openssh-8.7p1-43.el9

Name	openssh
Epoch	0
Version	8.7p1
Release	43.el9
Website/URL	http://www.openssh.com/portable.html
License	BSD
Build Time	2025-02-20 13:20:32
Build Host	certified-builder01.msvsphere-os.ru
Summary	An open source implementation of SSH protocol version 2
Repositories	OS
Description	SSH (Secure SHell) is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the secure channel. OpenSSH is OpenBSD's version of the last free version of SSH, bringing it up to date in terms of security and features. This package includes the core files necessary for both the OpenSSH client and server. To make this package useful, you should also install openssh-clients, openssh-server, or both.
Errata	—

Packages link

Package	Summary	SHA-256 checksum
x86_64
openssh-8.7p1-43.el9.x86_64	An open source implementation of SSH protocol version 2	7e3c9e96f99a2e1b2bda6b28676e4162b04a3c719ceb948600fb4f4daf43e712 download
openssh-askpass-8.7p1-43.el9.x86_64	A passphrase dialog for OpenSSH and X	ade0e2a23a65e0233964c1830418ca1a6cf8df837eef86a2a1c0efabb0ec94cd download
openssh-clients-8.7p1-43.el9.x86_64	An open source SSH client applications	4e7558d74ddf529a7f8598eb4783c2540512fbca7803cd04a25cc8bb7dfaf5a7 download
openssh-server-8.7p1-43.el9.x86_64	An open source SSH server daemon	7a59e846ddb29d38014a2fe6be22532f06de74f2d622e2bb87a82c95401fe428 download
src
openssh-8.7p1-43.el9.src	An open source implementation of SSH protocol version 2	d1df926632d3f2d84cd275c643ce78e944d8c1e9645a714d6966208722492e1e download

Changelog link

* Tue Jul 09 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-43
- Possible remote code execution due to a race condition (CVE-2024-6409)
  Resolves: RHEL-45741

* Thu Jul 04 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-42
- Possible remote code execution due to a race condition (CVE-2024-6387)
  Resolves: RHEL-45348

* Mon Jun 03 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-41
- Fix ssh multiplexing connect timeout processing
  Resolves: RHEL-37748

* Thu May 02 2024 Zoltan Fridrich <zfridric@redhat.com> - 8.7p1-40
- Correctly audit hostname and IP address
  Resolves: RHEL-22316
- Make default key sizes configurable in sshd-keygen
  Resolves: RHEL-26454

* Wed Apr 24 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-39
- Use FIPS-compatible API for key derivation
  Resolves: RHEL-32809

* Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-38
- Fix Terrapin attack
  Resolves: CVE-2023-48795

* Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-37
- Fix Terrapin attack
  Resolves: CVE-2023-48795

* Wed Dec 20 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-36
- Fix Terrapin attack
  Resolves: CVE-2023-48795
- Relax OpenSSH build-time checks for OpenSSL version
  Related: RHEL-4734
- Forbid shell metasymbols in username/hostname
  Resolves: CVE-2023-51385

* Mon Oct 23 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-35
- Relax OpenSSH checks for OpenSSL version
  Resolves: RHEL-4734
- Limit artificial delays in sshd while login using AD user
  Resolves: RHEL-2469
- Move users/groups creation logic to sysusers.d fragments
  Resolves: RHEL-5222

* Thu Jul 20 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-34
- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408

Project openssh-8.7p1-43.el9 content_copy

Project openssh-8.7p1-43.el9