| Name: | openssh |
|---|
| Version: | 9.9p1 |
|---|
| Release: | 14.0.1.el10_1 |
|---|
| Architecture: | aarch64 |
|---|
| Group: | Unspecified |
|---|
| Size: | 1444187 |
|---|
| License: | BSD-3-Clause AND BSD-2-Clause AND ISC AND SSH-OpenSSH AND ssh-keyscan AND sprintf AND LicenseRef-Fedora-Public-Domain AND X11-distribute-modifications-variant |
|---|
| RPM: |
openssh-9.9p1-14.0.1.el10_1.aarch64.rpm
|
| Source RPM: |
openssh-9.9p1-14.0.1.el10_1.src.rpm
|
| Build Date: | Tue May 05 2026 |
|---|
| Build Host: | build-ol10-aarch64.oracle.com |
|---|
| Vendor: | Oracle America |
|---|
| URL: | http://www.openssh.com/portable.html |
|---|
| Summary: | An open source implementation of SSH protocol version 2 |
|---|
| Description: | SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine. SSH is intended to replace rlogin and
rsh, and to provide secure encrypted communications between two
untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.
OpenSSH is OpenBSD's version of the last free version of SSH, bringing
it up to date in terms of security and features.
This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both. |
|---|
-
Tue May 05 2026 EL Errata <el-errata_ww@oracle.com> - 9.9p1-14.0.1
- Upstream references found with /usr/bin/ssh [Orabug: 37824421]
-
Mon Apr 13 2026 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-14
- CVE-2026-35385: Fix privilege escalation via scp legacy protocol
when not in preserving file mode
Resolves: RHEL-164738
- CVE-2026-35388: Add connection multiplexing confirmation for proxy-mode
multiplexing sessions
Resolves: RHEL-166237
- CVE-2026-35387: Fix incomplete application of PubkeyAcceptedAlgorithms
and HostbasedAcceptedAlgorithms with regard to ECDSA keys
Resolves: RHEL-166221
- CVE-2026-35414: Fix mishandling of authorized_keys principals option
Resolves: RHEL-166189
- CVE-2026-35386: Add validation rules to usernames and hostnames
set for ProxyJump/-J on the commandline
Resolves: RHEL-166205
-
Mon Mar 16 2026 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-13
- CVE-2026-3497: Fix information disclosure or denial of service due
to uninitialized variables in gssapi-keyex
Resolves: RHEL-155811
-
Mon Dec 08 2025 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-12
- CVE-2025-61984: Reject usernames with control characters
Resolves: RHEL-128397
- CVE-2025-61985: Reject URL-strings with NULL characters
Resolves: RHEL-128387
-
Fri Jul 18 2025 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-11
- Move the redhat help message to debug1 log level
Resolves: RHEL-93957
-
Thu Jun 26 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 9.9p1-10
- Support for authentication indicators in OpenSSH
Resolves: RHEL-40790
-
Tue Apr 29 2025 Zoltan Fridrich <zfridric@redhat.com> - 9.9p1-9
- CVE-2025-32728: Fix logic error in DisableForwarding option
Resolves: RHEL-86819
- Provide better error for non-supported private keys
Resolves: RHEL-68124
- Ignore bad hostkeys in known_hosts file
Resolves: RHEL-83644
-
Thu Mar 20 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 9.9p1-8
- OpenSSH should not use its own implementation of MLKEM
Resolves: RHEL-58252
- Correct processing of Compression directive
Resolves: RHEL-68346
- Supress systemd warning
Resolves: RHEL-84816
-
Tue Feb 18 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 9.9p1-7
- rebuilt
Related: RHEL-78699
-
Thu Feb 13 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 9.9p1-6
- Fix regression of Match directive processing
Related: RHEL-76317
- Fix missing error codes set and invalid error code checks in OpenSSH. It
prevents memory exhaustion attack and a MITM attack when VerifyHostKeyDNS
is on (CVE-2025-26465, CVE-2025-26466).
Resolves: RHEL-78699
Resolves: RHEL-78943