Oracle Linux 7 ELSA-2023-4382 Important: OpenSSH Remote Code Execution Fix
oracle
August 10, 2023
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
Summary
[7.4p1-23.0.1] - enlarge format buffer size for certificate serial number so the log message can record any 64-bit integer without truncation (openssh bz#3012) [Orabug: 30448895] [7.4p1-23 + 0.10.3-2] - Avoid remote code execution in ssh-agent PKCS#11 support Resolves: CVE-2023-38408
Topics Covered
SRPMs
https://oss.oracle.com:443/ol7/SRPMS-updates//openssh-7.4p1-23.0.1.el7_9.src.rpm
x86_64
aarch64
openssh-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-askpass-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-clients-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-keycat-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-server-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-cavs-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-ldap-7.4p1-23.0.1.el7_9.aarch64.rpm openssh-server-sysvinit-7.4p1-23.0.1.el7_9.aarch64.rpm pam_ssh_agent_auth-0.10.3-2.23.0.1.el7_9.aarch64.rpm
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Related CVEs:
CVE-2023-38408
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!