Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

Oracle Linux 9 ELSA-2024-4312 Critical: OpenSSH Remote Code Execution

oracle
Calendar Grey July 5, 2024
Oracle Linux Logo Esm H88
Red Hat Enterprise Linux Security Notice RHSA-2024-3278 details vulnerabilities and vital patches for the OpenSSL package, emphasizing possible remote code execution threats
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[8.7p1-38.0.2.1] - Update upstream references [Orabug: 36564626] [8.7p1-38.1] - Possible remote code execution due to a race condition (CVE-2024-6387) Resolves: RHEL-45347

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//openssh-8.7p1-38.0.2.el9_4.1.src.rpm

x86_64

openssh-8.7p1-38.0.2.el9_4.1.x86_64.rpm openssh-askpass-8.7p1-38.0.2.el9_4.1.x86_64.rpm openssh-clients-8.7p1-38.0.2.el9_4.1.x86_64.rpm openssh-keycat-8.7p1-38.0.2.el9_4.1.x86_64.rpm openssh-server-8.7p1-38.0.2.el9_4.1.x86_64.rpm pam_ssh_agent_auth-0.10.4-5.38.0.2.el9_4.1.x86_64.rpm

aarch64

openssh-8.7p1-38.0.2.el9_4.1.aarch64.rpm openssh-askpass-8.7p1-38.0.2.el9_4.1.aarch64.rpm openssh-clients-8.7p1-38.0.2.el9_4.1.aarch64.rpm openssh-keycat-8.7p1-38.0.2.el9_4.1.aarch64.rpm openssh-server-8.7p1-38.0.2.el9_4.1.aarch64.rpm pam_ssh_agent_auth-0.10.4-5.38.0.2.el9_4.1.aarch64.rpm

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2024-6387

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here