Lucene search
OracleLinuxELSA-2015-2088HistoryNov 23, 2015 - 12:00 a.m.
openssh security, bug fix, and enhancement update
2015-11-2300:00:00
linux.oracle.com
15
0.191 Low
EPSS
Percentile
95.7%
[6.6.1p1-22]
- Use the correct constant for glob limits (#1160377)
[6.6.1p1-21] - Extend memory limit for remote glob in sftp acc. to stat limit (#1160377)
[6.6.1p1-20] - Fix vulnerabilities published with openssh-7.0 (#1265807)
- Privilege separation weakness related to PAM support
- Use-after-free bug related to PAM support
[6.6.1p1-19] - Increase limit of files for glob match in sftp to 8192 (#1160377)
[6.6.1p1-18] - Add GSSAPIKexAlgorithms option for server and client application (#1253062)
[6.6.1p1-17] - Security fixes released with openssh-6.9 (CVE-2015-5352) (#1247864)
- XSECURITY restrictions bypass under certain conditions in ssh(1) (#1238231)
- weakness of agent locking (ssh-add -x) to password guessing (#1238238)
[6.6.1p1-16] - only query each keyboard-interactive device once (CVE-2015-5600) (#1245971)
[6.6.1p1-15] - One more typo in manual page documenting TERM variable (#1162683)
- Fix race condition with auditing messages answers (#1240613)
[6.6.1p1-14] - Fix ldif schema to have correct spacing on newlines (#1184938)
- Add missing values for sshd test mode (#1187597)
- ssh-copy-id: tcsh doesnt work with multiline strings (#1201758)
- Fix memory problems with newkeys and array transfers (#1223218)
- Enhance AllowGroups documentation in man page (#1150007)
[6.6.1p1-13] - Increase limit of files for glob match in sftp (#1160377)
- Add pam_reauthorize.so to /etc/pam.d/sshd (#1204233)
- Show all config values in sshd test mode (#1187597)
- Document required selinux boolean for working ssh-ldap-helper (#1178116)
- Consistent usage of pam_namespace in sshd (#1125110)
- Fix auditing when using combination of ForcedCommand and PTY (#1199112)
- Add sftp option to force mode of created files (#1197989)
- Ability to specify an arbitrary LDAP filter in ldap.conf for ssh-ldap-helper (#1201753)
- Provide documentation line for systemd service and socket (#1181591)
- Provide LDIF version of LPK schema (#1184938)
- Document TERM environment variable (#1162683)
- Fix ssh-copy-id on non-sh remote shells (#1201758)
- Do not read RSA1 hostkeys for HostBased authentication in FIPS (#1197666)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | openssh | < 6.6.1p1-22.el7 | openssh-6.6.1p1-22.el7.src.rpm |
| oracle linux | 7 | x86_64 | openssh | < 6.6.1p1-22.el7 | openssh-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | openssh-askpass | < 6.6.1p1-22.el7 | openssh-askpass-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | openssh-clients | < 6.6.1p1-22.el7 | openssh-clients-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | openssh-keycat | < 6.6.1p1-22.el7 | openssh-keycat-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | openssh-ldap | < 6.6.1p1-22.el7 | openssh-ldap-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | openssh-server | < 6.6.1p1-22.el7 | openssh-server-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | x86_64 | openssh-server-sysvinit | < 6.6.1p1-22.el7 | openssh-server-sysvinit-6.6.1p1-22.el7.x86_64.rpm |
| oracle linux | 7 | i686 | pam_ssh_agent_auth | < 0.9.3-9.22.el7 | pam_ssh_agent_auth-0.9.3-9.22.el7.i686.rpm |
| oracle linux | 7 | x86_64 | pam_ssh_agent_auth | < 0.9.3-9.22.el7 | pam_ssh_agent_auth-0.9.3-9.22.el7.x86_64.rpm |
Related
openvas
openvas
Oracle: Security Advisory (ELSA-2015-2088)
2015-11-24 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1695-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1544-1)
2021-04-19 00:00:00
nessus
nessus
SUSE SLES11 Security Update : openssh (SUSE-SU-2015:1547-1) (Logjam)
2015-09-14 00:00:00
gentoo
gentoo
OpenSSH: Multiple vulnerabilities
2015-12-20 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Open Source openssh affect IBM Security Identity Governance Appliance (CVE-2015-5352, CVE-2015-6563, CVE-2015-6564 )
2018-06-16 21:46:31
altlinux
altlinux
Security fix for the ALT Linux 6 package openssh version 6.7p1-alt1.M60P.4
2016-11-08 00:00:00
Security fix for the ALT Linux 7 package openssh version 6.7p1-alt1.M70P.4
2016-11-08 00:00:00
centos
centos
openssh, pam_ssh_agent_auth security update
2015-11-30 19:46:33
openssh, pam_ssh_agent_auth security update
2016-05-16 10:19:28
openssh, pam_ssh_agent_auth security update
2016-03-21 22:18:29
fedora
fedora
[SECURITY] Fedora 21 Update: openssh-6.6.1p1-16.fc21
2015-08-27 23:52:00
[SECURITY] Fedora 22 Update: openssh-6.9p1-1.fc22
2015-07-10 19:18:26
[SECURITY] Fedora 22 Update: openssh-6.9p1-4.fc22
2015-07-31 07:53:13
amazon
amazon
Medium: openssh
2015-12-14 10:00:00
Medium: openssh
2015-09-02 12:00:00
Medium: openssh
2015-07-22 10:00:00
suse
suse
Security update for openssh (important)
2015-09-21 09:10:02
redhat
redhat
(RHSA-2015:2088) Moderate: openssh security, bug fix, and enhancement update
2015-11-19 14:41:38
(RHSA-2016:0741) Moderate: openssh security, bug fix, and enhancement update
2016-05-10 06:42:16
(RHSA-2016:0466) Moderate: openssh security update
2016-03-21 00:00:00
f5
f5
K17263 : OpenSSH vulnerabilities CVE-2015-6563 and CVE-2015-6564
2015-09-17 00:00:00
SOL17263 - OpenSSH vulnerabilities CVE-2015-6563 and CVE-2015-6564
2015-09-16 00:00:00
K17461 : OpenSSH vulnerability CVE-2015-5352
2015-10-28 00:00:00
aix
aix
AIX OpenSSH Vulnerability
2015-10-21 09:17:40
AIX OpenSSH Vulnerability
2016-01-29 16:13:16
AIX OpenSSH Vulnerability
2015-09-04 05:15:17
osv
osv
openssh - security update
2015-09-30 00:00:00
openssh - security update
2018-09-10 00:00:00
openssh - regression update
2015-09-30 00:00:00
ubuntu
ubuntu
OpenSSH vulnerabilities
2015-08-14 00:00:00
OpenSSH regression
2015-08-18 00:00:00
debian
debian
[SECURITY] [DLA 288-1] openssh security update
2015-08-07 11:38:21
[SECURITY] [DLA 1500-1] openssh security update
2018-09-10 08:44:17
[SECURITY] [DLA 288-2] openssh regression update
2015-09-30 03:37:43
oraclelinux
oraclelinux
openssh security, bug fix, and enhancement update
2016-05-12 00:00:00
openssh security update
2016-04-03 00:00:00
openssh security update
2016-03-21 00:00:00
symantec
symantec
SA104 : OpenSSH Vulnerabilities
2015-12-08 08:00:00
freebsd
freebsd
OpenSSH -- PAM vulnerabilities
2015-08-11 00:00:00
OpenSSH -- MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices
2015-07-21 00:00:00
veracode
veracode
Privilege Escalation
2019-05-02 05:29:33
Privilege Escalation
2019-05-02 05:29:33
Authorization Bypass
2019-01-15 09:11:25
debiancve
debiancve
cve
cve
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2015-08-24 01:59:00
Design/Logic Flaw
2015-08-24 01:59:00
Design/Logic Flaw
2015-08-03 01:59:00
archlinux
archlinux
openssh: authentication limits bypass
2015-07-23 00:00:00
openssh: XSECURITY restrictions bypass
2015-07-04 00:00:00
mageia
mageia
Updated openssh package fixes security vulnerability
2015-07-09 11:09:20
Updated openssh package fixes security vulnerability
2015-07-29 00:01:59
checkpoint_advisories
checkpoint_advisories
OpenSSH kbdint_next_device Policy Bypass (CVE-2015-5600)
2016-09-28 00:00:00
cloudfoundry
cloudfoundry
USN-2710-1 OpenSSH Vulnerabilities | Cloud Foundry
2015-09-08 00:00:00
securityvulns
securityvulns
OpenSSH resreictions bypass
2015-08-24 00:00:00
FreeBSD Security Advisory FreeBSD-SA-15:16.openssh [REVISED]
2015-08-02 00:00:00
APPLE-SA-2015-10-21-4 OS X El Capitan 10.11.1 and Security Update 2015-007
2015-10-25 00:00:00
arista
arista
Security Advisory 0012
2015-08-20 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:16.openssh
2015-07-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1938
2021-07-02 17:38:20
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00
oracle
oracle
Oracle Critical Patch Update - July 2016
2016-07-19 00:00:00
CPU July 2018
2018-07-17 00:00:00