[ol9_baseos_latest] openssh-clients-8.7p1-43.0.1.el9.x86_64

OpenSSH is a free version of SSH (Secure SHell), a program for logging
into and executing commands on a remote machine. This package includes
the clients necessary to make encrypted connections to SSH servers.

Changelog (Show File list) (Show related packages)

• Fri Oct 25 2024 EL Errata <el-errata_ww@oracle.com> - 8.7p1-43.0.1

  - Update upstream references [Orabug: 36564626]

• Tue Jul 09 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-43

  - Possible remote code execution due to a race condition (CVE-2024-6409)
    Resolves: RHEL-45741

• Thu Jul 04 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-42

  - Possible remote code execution due to a race condition (CVE-2024-6387)
    Resolves: RHEL-45348

• Mon Jun 03 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-41

  - Fix ssh multiplexing connect timeout processing
    Resolves: RHEL-37748

• Thu May 02 2024 Zoltan Fridrich <zfridric@redhat.com> - 8.7p1-40

  - Correctly audit hostname and IP address
    Resolves: RHEL-22316
  - Make default key sizes configurable in sshd-keygen
    Resolves: RHEL-26454

• Wed Apr 24 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-39

  - Use FIPS-compatible API for key derivation
    Resolves: RHEL-32809

• Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-38

  - Fix Terrapin attack
    Resolves: CVE-2023-48795

• Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-37

  - Fix Terrapin attack
    Resolves: CVE-2023-48795

• Wed Dec 20 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-36

  - Fix Terrapin attack
    Resolves: CVE-2023-48795
  - Relax OpenSSH build-time checks for OpenSSL version
    Related: RHEL-4734
  - Forbid shell metasymbols in username/hostname
    Resolves: CVE-2023-51385

• Mon Oct 23 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.7p1-35

  - Relax OpenSSH checks for OpenSSL version
    Resolves: RHEL-4734
  - Limit artificial delays in sshd while login using AD user
    Resolves: RHEL-2469
  - Move users/groups creation logic to sysusers.d fragments
    Resolves: RHEL-5222