[ol9_baseos_latest] openssh-server-8.7p1-38.0.2.el9_4.4.aarch64

Name:	openssh-server
Version:	8.7p1
Release:	38.0.2.el9_4.4
Architecture:	aarch64
Group:	Unspecified
Size:	1106682
License:	BSD
RPM:	openssh-server-8.7p1-38.0.2.el9_4.4.aarch64.rpm
Source RPM:	openssh-8.7p1-38.0.2.el9_4.4.src.rpm
Build Date:	Wed Jul 10 2024
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.openssh.com/portable.html
Summary:	An open source SSH server daemon
Description:	OpenSSH is a free version of SSH (Secure SHell), a program for logging into and executing commands on a remote machine. This package contains the secure shell daemon (sshd). The sshd daemon allows SSH clients to securely connect to your SSH server.

Changelog (Show File list) (Show related packages)

Wed Jul 10 2024 Craig Guiller <craig.guiller@oracle.com> - 8.7p1-38.0.2.4

- Possible remote code execution due to a race condition (CVE-2024-6409)
  Resolves: RHEL-45741

Wed Jul 03 2024 Pooja Senthil Kumar <pooja.senthil.kumar@oracle.com> - 8.7p1-38.0.2.1
```
- Update upstream references [Orabug: 36564626]
```

Fri Jun 28 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-38.1

- Possible remote code execution due to a race condition (CVE-2024-6387)
  Resolves: RHEL-45347

Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-38
```
- Fix Terrapin attack
  Resolves: CVE-2023-48795
```
Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-37
```
- Fix Terrapin attack
  Resolves: CVE-2023-48795
```

Wed Dec 20 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-36

- Fix Terrapin attack
  Resolves: CVE-2023-48795
- Relax OpenSSH build-time checks for OpenSSL version
  Related: RHEL-4734
- Forbid shell metasymbols in username/hostname
  Resolves: CVE-2023-51385

Mon Oct 23 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-35

- Relax OpenSSH checks for OpenSSL version
  Resolves: RHEL-4734
- Limit artificial delays in sshd while login using AD user
  Resolves: RHEL-2469
- Move users/groups creation logic to sysusers.d fragments
  Resolves: RHEL-5222

Thu Jul 20 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-34

- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408

Tue Jun 13 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-33

- Allow specifying validity interval in UTC
  Resolves: rhbz#2115043

Wed May 24 2023 Norbert Pocs <npocs@redhat.com> - 8.7p1-32

- Fix pkcs11 issue with the recent changes
- Delete unnecessary log messages from previous compl-dh patch
- Add ssh_config man page explanation on rhbz#2068423
- Resolves: rhbz#2207793, rhbz#2209096