(RHSA-2018:0980) Low: openssh security, bug fix, and enhancement update

2018-04-1005:04:58

access.redhat.com

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

79.3%

JSON

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.

Security Fix(es):

openssh: Improper write operations in readonly mode allow for zero-length file creation (CVE-2017-15906)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.5 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7aarch64openssh-askpass< 7.4p1-16.el7openssh-askpass-7.4p1-16.el7.aarch64.rpm
RedHat7aarch64openssh-debuginfo< 7.4p1-16.el7openssh-debuginfo-7.4p1-16.el7.aarch64.rpm
RedHat7s390pam_ssh_agent_auth< 0.10.3-2.16.el7pam_ssh_agent_auth-0.10.3-2.16.el7.s390.rpm
RedHat7x86_64openssh-debuginfo< 7.4p1-16.el7openssh-debuginfo-7.4p1-16.el7.x86_64.rpm
RedHat7x86_64openssh-server-sysvinit< 7.4p1-16.el7openssh-server-sysvinit-7.4p1-16.el7.x86_64.rpm
RedHat7ppc64leopenssh-askpass< 7.4p1-16.el7openssh-askpass-7.4p1-16.el7.ppc64le.rpm
RedHat7ppc64leopenssh-server-sysvinit< 7.4p1-16.el7openssh-server-sysvinit-7.4p1-16.el7.ppc64le.rpm
RedHat7ppcopenssh-debuginfo< 7.4p1-16.el7openssh-debuginfo-7.4p1-16.el7.ppc.rpm
RedHat7aarch64openssh-ldap< 7.4p1-16.el7openssh-ldap-7.4p1-16.el7.aarch64.rpm
RedHat7s390xopenssh-server-sysvinit< 7.4p1-16.el7openssh-server-sysvinit-7.4p1-16.el7.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	aarch64	openssh-askpass	< 7.4p1-16.el7	openssh-askpass-7.4p1-16.el7.aarch64.rpm
RedHat	7	aarch64	openssh-debuginfo	< 7.4p1-16.el7	openssh-debuginfo-7.4p1-16.el7.aarch64.rpm
RedHat	7	s390	pam_ssh_agent_auth	< 0.10.3-2.16.el7	pam_ssh_agent_auth-0.10.3-2.16.el7.s390.rpm
RedHat	7	x86_64	openssh-debuginfo	< 7.4p1-16.el7	openssh-debuginfo-7.4p1-16.el7.x86_64.rpm
RedHat	7	x86_64	openssh-server-sysvinit	< 7.4p1-16.el7	openssh-server-sysvinit-7.4p1-16.el7.x86_64.rpm
RedHat	7	ppc64le	openssh-askpass	< 7.4p1-16.el7	openssh-askpass-7.4p1-16.el7.ppc64le.rpm
RedHat	7	ppc64le	openssh-server-sysvinit	< 7.4p1-16.el7	openssh-server-sysvinit-7.4p1-16.el7.ppc64le.rpm
RedHat	7	ppc	openssh-debuginfo	< 7.4p1-16.el7	openssh-debuginfo-7.4p1-16.el7.ppc.rpm
RedHat	7	aarch64	openssh-ldap	< 7.4p1-16.el7	openssh-ldap-7.4p1-16.el7.aarch64.rpm
RedHat	7	s390x	openssh-server-sysvinit	< 7.4p1-16.el7	openssh-server-sysvinit-7.4p1-16.el7.s390x.rpm