[ol9_appstream] openssh-askpass-8.7p1-45.0.2.el9.aarch64

Name:	openssh-askpass
Version:	8.7p1
Release:	45.0.2.el9
Architecture:	aarch64
Group:	Unspecified
Size:	68786
License:	BSD
RPM:	openssh-askpass-8.7p1-45.0.2.el9.aarch64.rpm
Source RPM:	openssh-8.7p1-45.0.2.el9.src.rpm
Build Date:	Tue Apr 15 2025
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.openssh.com/portable.html
Summary:	A passphrase dialog for OpenSSH and X
Description:	OpenSSH is a free version of SSH (Secure SHell), a program for logging into and executing commands on a remote machine. This package contains an X11 passphrase dialog for OpenSSH.

Changelog (Show File list) (Show related packages)

Tue Apr 15 2025 Darren Archibald <darren.archibald@oracle.com> - 8.7p1-45.0.2
```
- Upstream references found with /usr/bin/ssh [Orabug: 37814929]
```

Thu Mar 06 2025 EL Errata <el-errata_ww@oracle.com> - 8.7p1-45.0.1

- upstream: fix AuthorizedPrincipalsCommand when AuthorizedKeysCommand [Orabug: 37647064]
- Update upstream references [Orabug: 36564626]

Tue Feb 18 2025 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-45

- Fix missing error codes set and invalid error code checks in OpenSSH. It
  prevents memory exhaustion attack and a MITM attack when VerifyHostKeyDNS
  is on (CVE-2025-26465).
  Resolves: RHEL-78700

Mon Oct 21 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-44

- Add extra help information on ssh early failure
  Resolves: RHEL-33809
- Provide details on crypto error instead of "error in libcrypto"
  Resolves: RHEL-52293
- Allow duplicate Subsystem directive
  Resolves: RHEL-47112

Tue Jul 09 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-43

- Possible remote code execution due to a race condition (CVE-2024-6409)
  Resolves: RHEL-45741

Thu Jul 04 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-42

- Possible remote code execution due to a race condition (CVE-2024-6387)
  Resolves: RHEL-45348

Mon Jun 03 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-41

- Fix ssh multiplexing connect timeout processing
  Resolves: RHEL-37748

Thu May 02 2024 Zoltan Fridrich <zfridric@redhat.com> - 8.7p1-40

- Correctly audit hostname and IP address
  Resolves: RHEL-22316
- Make default key sizes configurable in sshd-keygen
  Resolves: RHEL-26454

Wed Apr 24 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-39

- Use FIPS-compatible API for key derivation
  Resolves: RHEL-32809

Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-38
```
- Fix Terrapin attack
  Resolves: CVE-2023-48795
```