openssh security, bug fix, and enhancement update

2009-09-08T00:00:00
ID ELSA-2009-1287
Type oraclelinux
Reporter Oracle
Modified 2009-09-08T00:00:00

Description

[4.3p2-36] - tiny change in chroot sftp capability into openssh-server solve ls speed problem (#440240) [4.3p2-35] - workaround to plaintext recovery attack against CBC ciphers CVE-2008-5161 (#502230) [4.3p2-34] - disable protocol 1 in the FIPS mode [4.3p2-33] - fix scp hangup on exit (#454812) - call integrity checks only on binaries which are part of the OpenSSH FIPS modules [4.3p2-32] - log if FIPS mode is initialized (#492363) - check the integrity of the binaries in the FIPS mode (#467268) [4.3p2-31] - fix ssh hangup on exit (#454812) [4.3p2-30] - add chroot sftp capability into openssh-server (#440240)