Name: | openssh |
---|---|
Version: | 8.0p1 |
Release: | 24.0.1.el8 |
Architecture: | x86_64 |
Group: | Applications/Internet |
Size: | 1937984 |
License: | BSD |
RPM: | openssh-8.0p1-24.0.1.el8.x86_64.rpm |
Source RPM: | openssh-8.0p1-24.0.1.el8.src.rpm |
Build Date: | Tue May 07 2024 |
Build Host: | build-ol8-x86_64.oracle.com |
Vendor: | Oracle America |
URL: | http://www.openssh.com/portable.html |
Summary: | An open source implementation of SSH protocol version 2 |
Description: | SSH (Secure SHell) is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the secure channel. OpenSSH is OpenBSD's version of the last free version of SSH, bringing it up to date in terms of security and features. This package includes the core files necessary for both the OpenSSH client and server. To make this package useful, you should also install openssh-clients, openssh-server, or both. |
- Update upstream references [Orabug: 36587718]
- Providing a kill switch for scp to deal with CVE-2020-15778 Resolves: RHEL-22870
- Fix Terrapin attack Resolves: RHEL-19308
- Fix Terrapin attack Resolves: RHEL-19308 - Forbid shell metasymbols in username/hostname Resolves: RHEL-19788
- Using DigestSign/DigestVerify functions for better FIPS compatibility Resolves: RHEL-5217
- Limit artificial delays in sshd while login using AD user Resolves: RHEL-1684 - Add comment to OpenSSH server config about FIPS-incompatible key Resolves: RHEL-5221 - Avoid killing all processes on system in case of race condition Resolves: RHEL-11548 - Avoid sshd_config 256K limit Resolves: RHEL-5279 - Using DigestSign/DigestVerify functions for better FIPS compatibility Resolves: RHEL-5217 - Fix GSS KEX causing ssh failures when connecting to WinSSHD Resolves: RHEL-5321
- rebuilt Related: CVE-2023-38408
- Avoid remote code execution in ssh-agent PKCS#11 support Resolves: CVE-2023-38408
- Fix parsing of IPv6 IPs in sftp client (#2151334) - Avoid ssh banner one-byte overflow (#2138344) - Avoid crash of sshd when Include folder does not exist (#2133087)
- Omit client side from minimize-sha1-use.patch to prevent regression (#2093897)