Red Hat Enterprise Linux 7: RHSA-2021-4782 Moderate: OpenSSH Update
red hat
November 23, 2021
An update for openssh is now available for Red Hat Enterprise Linux 7
Solution
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the OpenSSH server daemon (sshd) will be
restarted automatically.
Summary
OpenSSH is an SSH protocol implementation supported by a number of Linux,
UNIX, and similar operating systems. It includes the core files necessary
for both the OpenSSH client and server.
Security Fix(es):
* openssh: privilege escalation when AuthorizedKeysCommand or
AuthorizedPrincipalsCommand are configured (CVE-2021-41617)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
References
https://access.redhat.com/security/cve/CVE-2021-41617 https://access.redhat.com/security/updates/classification#moderate
Package List
Red Hat Enterprise Linux Client (v. 7):
Source:
openssh-7.4p1-22.el7_9.src.rpm
x86_64:
openssh-7.4p1-22.el7_9.x86_64.rpm
openssh-askpass-7.4p1-22.el7_9.x86_64.rpm
openssh-clients-7.4p1-22.el7_9.x86_64.rpm
openssh-debuginfo-7.4p1-22.el7_9.x86_64.rpm
openssh-keycat-7.4p1-22.el7_9.x86_64.rpm
openssh-server-7.4p1-22.el7_9.x86_64.rpm
Red Hat Enterprise Linux Client Optional (v. 7):
x86_64:
openssh-cavs-7.4p1-22.el7_9.x86_64.rpm
openssh-debuginfo-7.4p1-22.el7_9.i686.rpm
openssh-debuginfo-7.4p1-22.el7_9.x86_64.rpm
openssh-ldap-7.4p1-22.el7_9.x86_64.rpm
openssh-server-sysvinit-7.4p1-22.el7_9.x86_64.rpm
pam_ssh_agent_auth-0.10.3-2.22.el7_9.i686.rpm
pam_ssh_agent_auth-0.10.3-2.22.el7_9.x86_64.rpm
Red Hat Enterprise Linux ComputeNode (v. 7):
Source:
openssh-7.4p1-22.el7_9.src.rpm
x86_64:
openssh-7.4p1-22.el7_9.x86_64.rpm
openssh-clients-7.4p1-22.el7_9.x86_64.rpm
openssh-debuginfo-7.4p1-22.el7_9.x86_64.rpm
openssh-keycat-7.4p1-22.el7_9.x86_64.rpm
openssh-server-7.4p1-22.el7_9.x86_64.rpm
Red Hat Enterprise Linux ComputeNode Optional (v. 7):
x86_64:
openssh-askpass-7.4p1-22.el7_9.x86_64.rpm
openssh-cavs-7.4p1-22.el7_9.x86_64.rpm
openssh-debuginfo-7.4p1-22.el7_9.i686.rpm
openssh-debuginfo-7.4p1-22.el7_9.x86_64.rpm
openssh-ldap-7.4p1-22.el7_9.x86_64.rpm
Read the Full Advisory
PREVIOUS 
NEXT Advisory ID: RHSA-2021:4782-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:4782
Issue date: 2021-11-23
Topic
An update for openssh is now available for Red Hat Enterprise Linux 7.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.
Relevant Releases Architectures
Red Hat Enterprise Linux Client (v. 7) - x86_64
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64
Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64
Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 7) - x86_64
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64
Bugs Fixed
1999263 - frequent sshd segfaults
2008291 - CVE-2021-41617 openssh: privilege escalation when AuthorizedKeysCommand or AuthorizedPrincipalsCommand are configured
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!