Lucene search
OracleLinuxELSA-2021-4368HistoryNov 16, 2021 - 12:00 a.m.
openssh security update
2021-11-1600:00:00
linux.oracle.com
32
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
[8.0p1-10]
- sshd -T requires -C when ‘Match’ is used in sshd_config (#1836277)
[8.0p1-9] - CVE-2020-14145 openssh: Observable Discrepancy leading to an information
leak in the algorithm negotiation (#1882252) - Hostbased ssh authentication fails if session ID contains a ‘/’ (#1944125)
[8.0p1-8] - ssh doesnt restore the blocking mode on standard output (#1942901)
[8.0p1-7 + 0.10.3-7] - SFTP sort upon the modification time (#1909988)
- ssh-keygen printing fingerprint issue with Windows keys (#1901518)
- PIN is lost when iterating over tokens when adding pkcs11 keys to ssh-agent (#1843372)
- ssh-agent segfaults during ssh-add -s pkcs11 (#1868996)
- ssh-copy-id could not resolve ipv6 address ends with colon (#1933517)
- sshd provides PAM an incorrect error code (#1879503)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | openssh | < 8.0p1-10.el8 | openssh-8.0p1-10.el8.src.rpm |
| oracle linux | 8 | aarch64 | openssh | < 8.0p1-10.el8 | openssh-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | openssh-askpass | < 8.0p1-10.el8 | openssh-askpass-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | openssh-cavs | < 8.0p1-10.el8 | openssh-cavs-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | openssh-clients | < 8.0p1-10.el8 | openssh-clients-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | openssh-keycat | < 8.0p1-10.el8 | openssh-keycat-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | openssh-ldap | < 8.0p1-10.el8 | openssh-ldap-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | openssh-server | < 8.0p1-10.el8 | openssh-server-8.0p1-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | pam_ssh_agent_auth | < 0.10.3-7.10.el8 | pam_ssh_agent_auth-0.10.3-7.10.el8.aarch64.rpm |
| oracle linux | 8 | src | openssh | < 8.0p1-10.el8 | openssh-8.0p1-10.el8.src.rpm |
Related
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.6.0 : openssh (EulerOS-SA-2021-1541)
2021-03-04 00:00:00
Oracle Linux 8 : openssh (ELSA-2021-4368)
2021-11-17 00:00:00
EulerOS 2.0 SP9 : openssh (EulerOS-SA-2021-1270)
2021-02-05 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:3736-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2021-1541)
2021-03-05 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2021-1694)
2021-03-24 00:00:00
ibm
ibm
osv
osv
Moderate: openssh security update
2021-11-09 09:11:41
CVE-2020-14145
2020-06-29 18:15:11
Moderate: openssh security update
2021-11-09 09:11:41
suse
suse
Security update for openssh (moderate)
2020-12-13 00:00:00
Security update for openssh (moderate)
2020-12-20 00:00:00
almalinux
almalinux
Moderate: openssh security update
2021-11-09 09:11:41
f5
f5
K48050136 : OpenSSH client vulnerability CVE-2020-14145
2020-10-13 00:00:00
redhat
redhat
(RHSA-2021:4368) Moderate: openssh security update
2021-11-09 09:11:41
(RHSA-2022:0580) Important: Red Hat OpenShift GitOps security update
2022-02-17 21:43:14
veracode
veracode
Information Disclosure
2020-12-15 16:25:25
cbl_mariner
cbl_mariner
CVE-2020-14145 affecting package openssh 8.0p1-13
2020-11-30 19:30:42
ubuntucve
ubuntucve
CVE-2020-14145
2020-06-29 00:00:00
prion
prion
Design/Logic Flaw
2020-06-29 18:15:00
broadcom
broadcom
alpinelinux
alpinelinux
CVE-2020-14145
2020-06-29 18:15:00
redhatcve
redhatcve
CVE-2020-14145
2020-07-01 15:51:38
debiancve
debiancve
CVE-2020-14145
2020-06-29 18:15:00
mageia
mageia
Updated openssh packages fix a security vulnerability
2021-03-12 04:25:47
rocky
rocky
openssh security update
2021-11-09 09:11:41
cve
cve
CVE-2020-14145
2020-06-29 18:15:00
gentoo
gentoo
OpenSSH: Multiple vulnerabilities
2021-05-26 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0356
2022-01-26 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0356
2022-01-28 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
avleonov
avleonov
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
Related for ELSA-2021-4368