AlmaLinux 2314 Published by

An openssh security update has been released for AlmaLinux 9.



ALSA-2023:4412 Important: openssh security update


Type:
security

Severity:
important

Release date:
2023-08-02

Description
Security Fix(es):
* openssh: Remote code execution in ssh-agent PKCS#11 support (CVE-2023-38408)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2023-38408
RHSA-2023:4412
ALSA-2023:4412

Updates packages:
openssh-8.7p1-30.el9_2.s390x.rpm
openssh-askpass-8.7p1-30.el9_2.x86_64.rpm
openssh-server-8.7p1-30.el9_2.s390x.rpm
openssh-keycat-8.7p1-30.el9_2.x86_64.rpm
openssh-server-8.7p1-30.el9_2.ppc64le.rpm
openssh-keycat-8.7p1-30.el9_2.ppc64le.rpm
pam_ssh_agent_auth-0.10.4-5.30.el9_2.s390x.rpm
openssh-clients-8.7p1-30.el9_2.ppc64le.rpm
openssh-keycat-8.7p1-30.el9_2.s390x.rpm
openssh-8.7p1-30.el9_2.x86_64.rpm
openssh-askpass-8.7p1-30.el9_2.s390x.rpm
openssh-8.7p1-30.el9_2.ppc64le.rpm
openssh-clients-8.7p1-30.el9_2.x86_64.rpm
openssh-askpass-8.7p1-30.el9_2.ppc64le.rpm
openssh-keycat-8.7p1-30.el9_2.aarch64.rpm
pam_ssh_agent_auth-0.10.4-5.30.el9_2.x86_64.rpm
openssh-server-8.7p1-30.el9_2.aarch64.rpm
openssh-askpass-8.7p1-30.el9_2.aarch64.rpm
openssh-server-8.7p1-30.el9_2.x86_64.rpm
pam_ssh_agent_auth-0.10.4-5.30.el9_2.ppc64le.rpm
pam_ssh_agent_auth-0.10.4-5.30.el9_2.aarch64.rpm
openssh-8.7p1-30.el9_2.aarch64.rpm
openssh-clients-8.7p1-30.el9_2.aarch64.rpm
openssh-clients-8.7p1-30.el9_2.s390x.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:4412 Important: openssh security update