Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-48795 (GCVE-0-2023-48795)
Vulnerability from cvelistv5 – Published: 2023-12-18 00:00 – Updated: 2026-05-12 11:02
VLAI
EPSS
Summary
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
Severity
5.9 (Medium)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- n/a
- CWE-354 - Improper Validation of Integrity Check Value
Assigner
References
139 references
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Siemens | RUGGEDCOM APE1808 |
Affected:
0 , < *
(custom)
|
|
| Siemens | SIMATIC S7-1500 CPU 1518-4 PN/DP MFP |
Affected:
V3.1.5 , < *
(custom)
|
|
| Siemens | SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP |
Affected:
V3.1.5 , < *
(custom)
|
|
| Siemens | SIPLUS S7-1500 CPU 1518-4 PN/DP MFP |
Affected:
V3.1.5 , < *
(custom)
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-11-04T22:05:21.417Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit"
},
{
"url": "https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://matt.ucc.asn.au/dropbear/CHANGES"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.netsarang.com/en/xshell-update-history/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.paramiko.org/changelog.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.openssh.com/openbsd.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/openssh/openssh-portable/commits/master"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.bitvise.com/ssh-server-version-history"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/ronf/asyncssh/tags"
},
{
"tags": [
"x_transferred"
],
"url": "https://gitlab.com/libssh/libssh-mirror/-/tags"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.openssh.com/txt/release-9.6"
},
{
"tags": [
"x_transferred"
],
"url": "https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.terrapin-attack.com"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst"
},
{
"tags": [
"x_transferred"
],
"url": "https://thorntech.com/cve-2023-48795-and-sftp-gateway/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/warp-tech/russh/releases/tag/v0.40.2"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2023/12/18/2"
},
{
"tags": [
"x_transferred"
],
"url": "https://twitter.com/TrueSkrillor/status/1736774389725565005"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/paramiko/paramiko/issues/2337"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=38684904"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=38685286"
},
{
"name": "[oss-security] 20231218 CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/12/18/3"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/mwiede/jsch/issues/457"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/erlang/otp/releases/tag/OTP-26.2.1"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/advisories/GHSA-45x7-px36-x8w8"
},
{
"tags": [
"x_transferred"
],
"url": "https://security-tracker.debian.org/tracker/source-package/libssh2"
},
{
"tags": [
"x_transferred"
],
"url": "https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg"
},
{
"tags": [
"x_transferred"
],
"url": "https://security-tracker.debian.org/tracker/CVE-2023-48795"
},
{
"tags": [
"x_transferred"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1217950"
},
{
"tags": [
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"tags": [
"x_transferred"
],
"url": "https://bugs.gentoo.org/920280"
},
{
"tags": [
"x_transferred"
],
"url": "https://ubuntu.com/security/CVE-2023-48795"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/"
},
{
"tags": [
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/cve-2023-48795"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/mwiede/jsch/pull/461"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/drakkan/sftpgo/releases/tag/v2.5.6"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/libssh2/libssh2/pull/1291"
},
{
"tags": [
"x_transferred"
],
"url": "https://forum.netgate.com/topic/184941/terrapin-ssh-attack"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/rapier1/hpn-ssh/releases"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/proftpd/proftpd/issues/456"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/TeraTermProject/teraterm/releases/tag/v5.1"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15"
},
{
"tags": [
"x_transferred"
],
"url": "https://oryx-embedded.com/download/#changelog"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3"
},
{
"tags": [
"x_transferred"
],
"url": "https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC"
},
{
"tags": [
"x_transferred"
],
"url": "https://crates.io/crates/thrussh/versions"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/NixOS/nixpkgs/pull/275249"
},
{
"name": "[oss-security] 20231219 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/12/19/5"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc"
},
{
"tags": [
"x_transferred"
],
"url": "https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/"
},
{
"name": "[oss-security] 20231220 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/12/20/3"
},
{
"tags": [
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/apache/mina-sshd/issues/445"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/hierynomus/sshj/issues/916"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/janmojzis/tinyssh/issues/81"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2023/12/20/3"
},
{
"tags": [
"x_transferred"
],
"url": "https://security-tracker.debian.org/tracker/source-package/trilead-ssh2"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16"
},
{
"name": "FEDORA-2023-0733306be9",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/"
},
{
"name": "DSA-5586",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5586"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.theregister.com/2023/12/20/terrapin_attack_ssh"
},
{
"tags": [
"x_transferred"
],
"url": "https://filezilla-project.org/versions.php"
},
{
"tags": [
"x_transferred"
],
"url": "https://nova.app/releases/#v11.8"
},
{
"tags": [
"x_transferred"
],
"url": "https://roumenpetrov.info/secsh/#news20231220"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.vandyke.com/products/securecrt/history.txt"
},
{
"tags": [
"x_transferred"
],
"url": "https://help.panic.com/releasenotes/transmit5/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/PowerShell/Win32-OpenSSH/issues/2189"
},
{
"tags": [
"x_transferred"
],
"url": "https://winscp.net/eng/docs/history#6.2.2"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.bitvise.com/ssh-client-version-history#933"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/cyd01/KiTTY/issues/520"
},
{
"name": "DSA-5588",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5588"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/ssh-mitm/ssh-mitm/issues/165"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=38732005"
},
{
"name": "[debian-lts-announce] 20231226 [SECURITY] [DLA 3694-1] openssh security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html"
},
{
"name": "GLSA-202312-16",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202312-16"
},
{
"name": "GLSA-202312-17",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202312-17"
},
{
"name": "FEDORA-2023-20feb865d8",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/"
},
{
"name": "FEDORA-2023-cb8c606fbb",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/"
},
{
"name": "FEDORA-2023-e77300e4b5",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/"
},
{
"name": "FEDORA-2023-b87ec6cf47",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/"
},
{
"name": "FEDORA-2023-153404713b",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240105-0004/"
},
{
"name": "FEDORA-2024-3bb23c77f3",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/"
},
{
"name": "FEDORA-2023-55800423a8",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/"
},
{
"name": "FEDORA-2024-d946b9ad25",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/"
},
{
"name": "FEDORA-2024-71c2c6526c",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/"
},
{
"name": "FEDORA-2024-39a8c72ea9",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/"
},
{
"tags": [
"x_transferred"
],
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002"
},
{
"name": "FEDORA-2024-ae653fb07b",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/"
},
{
"name": "FEDORA-2024-2705241461",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/"
},
{
"name": "FEDORA-2024-fb32950d11",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/"
},
{
"name": "FEDORA-2024-7b08207cdb",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/"
},
{
"name": "FEDORA-2024-06ebb70bdd",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/"
},
{
"name": "[debian-lts-announce] 20240125 [SECURITY] [DLA 3718-1] php-phpseclib security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html"
},
{
"name": "[debian-lts-announce] 20240125 [SECURITY] [DLA 3719-1] phpseclib security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html"
},
{
"name": "FEDORA-2024-a53b24023d",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/"
},
{
"name": "FEDORA-2024-3fd1bc9276",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/"
},
{
"tags": [
"x_transferred"
],
"url": "https://support.apple.com/kb/HT214084"
},
{
"name": "20240313 APPLE-SA-03-07-2024-2 macOS Sonoma 14.4",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2024/Mar/21"
},
{
"name": "[debian-lts-announce] 20240425 [SECURITY] [DLA 3794-1] putty security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html"
},
{
"name": "[oss-security] 20240417 Terrapin vulnerability in Jenkins CLI client",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/04/17/8"
},
{
"name": "[oss-security] 20240306 Multiple vulnerabilities in Jenkins plugins",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/03/06/3"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-48795",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2023-12-22T05:01:05.519910Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-354",
"description": "CWE-354 Improper Validation of Integrity Check Value",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-27T20:45:57.733Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM APE1808",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-12T11:02:25.905Z",
"orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
"shortName": "siemens-SADP"
},
"references": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-794697.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-364175.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-915275.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-769027.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
}
],
"x_adpType": "supplier"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-05-01T18:06:23.972Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html"
},
{
"url": "https://matt.ucc.asn.au/dropbear/CHANGES"
},
{
"url": "https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES"
},
{
"url": "https://www.netsarang.com/en/xshell-update-history/"
},
{
"url": "https://www.paramiko.org/changelog.html"
},
{
"url": "https://www.openssh.com/openbsd.html"
},
{
"url": "https://github.com/openssh/openssh-portable/commits/master"
},
{
"url": "https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ"
},
{
"url": "https://www.bitvise.com/ssh-server-version-history"
},
{
"url": "https://github.com/ronf/asyncssh/tags"
},
{
"url": "https://gitlab.com/libssh/libssh-mirror/-/tags"
},
{
"url": "https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/"
},
{
"url": "https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42"
},
{
"url": "https://www.openssh.com/txt/release-9.6"
},
{
"url": "https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/"
},
{
"url": "https://www.terrapin-attack.com"
},
{
"url": "https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25"
},
{
"url": "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst"
},
{
"url": "https://thorntech.com/cve-2023-48795-and-sftp-gateway/"
},
{
"url": "https://github.com/warp-tech/russh/releases/tag/v0.40.2"
},
{
"url": "https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0"
},
{
"url": "https://www.openwall.com/lists/oss-security/2023/12/18/2"
},
{
"url": "https://twitter.com/TrueSkrillor/status/1736774389725565005"
},
{
"url": "https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d"
},
{
"url": "https://github.com/paramiko/paramiko/issues/2337"
},
{
"url": "https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg"
},
{
"url": "https://news.ycombinator.com/item?id=38684904"
},
{
"url": "https://news.ycombinator.com/item?id=38685286"
},
{
"name": "[oss-security] 20231218 CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/12/18/3"
},
{
"url": "https://github.com/mwiede/jsch/issues/457"
},
{
"url": "https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6"
},
{
"url": "https://github.com/erlang/otp/releases/tag/OTP-26.2.1"
},
{
"url": "https://github.com/advisories/GHSA-45x7-px36-x8w8"
},
{
"url": "https://security-tracker.debian.org/tracker/source-package/libssh2"
},
{
"url": "https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg"
},
{
"url": "https://security-tracker.debian.org/tracker/CVE-2023-48795"
},
{
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1217950"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"url": "https://bugs.gentoo.org/920280"
},
{
"url": "https://ubuntu.com/security/CVE-2023-48795"
},
{
"url": "https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/"
},
{
"url": "https://access.redhat.com/security/cve/cve-2023-48795"
},
{
"url": "https://github.com/mwiede/jsch/pull/461"
},
{
"url": "https://github.com/drakkan/sftpgo/releases/tag/v2.5.6"
},
{
"url": "https://github.com/libssh2/libssh2/pull/1291"
},
{
"url": "https://forum.netgate.com/topic/184941/terrapin-ssh-attack"
},
{
"url": "https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5"
},
{
"url": "https://github.com/rapier1/hpn-ssh/releases"
},
{
"url": "https://github.com/proftpd/proftpd/issues/456"
},
{
"url": "https://github.com/TeraTermProject/teraterm/releases/tag/v5.1"
},
{
"url": "https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15"
},
{
"url": "https://oryx-embedded.com/download/#changelog"
},
{
"url": "https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update"
},
{
"url": "https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22"
},
{
"url": "https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab"
},
{
"url": "https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3"
},
{
"url": "https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC"
},
{
"url": "https://crates.io/crates/thrussh/versions"
},
{
"url": "https://github.com/NixOS/nixpkgs/pull/275249"
},
{
"name": "[oss-security] 20231219 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/12/19/5"
},
{
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc"
},
{
"url": "https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/"
},
{
"name": "[oss-security] 20231220 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/12/20/3"
},
{
"url": "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html"
},
{
"url": "https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES"
},
{
"url": "https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES"
},
{
"url": "https://github.com/apache/mina-sshd/issues/445"
},
{
"url": "https://github.com/hierynomus/sshj/issues/916"
},
{
"url": "https://github.com/janmojzis/tinyssh/issues/81"
},
{
"url": "https://www.openwall.com/lists/oss-security/2023/12/20/3"
},
{
"url": "https://security-tracker.debian.org/tracker/source-package/trilead-ssh2"
},
{
"url": "https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16"
},
{
"name": "FEDORA-2023-0733306be9",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/"
},
{
"name": "DSA-5586",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5586"
},
{
"url": "https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508"
},
{
"url": "https://www.theregister.com/2023/12/20/terrapin_attack_ssh"
},
{
"url": "https://filezilla-project.org/versions.php"
},
{
"url": "https://nova.app/releases/#v11.8"
},
{
"url": "https://roumenpetrov.info/secsh/#news20231220"
},
{
"url": "https://www.vandyke.com/products/securecrt/history.txt"
},
{
"url": "https://help.panic.com/releasenotes/transmit5/"
},
{
"url": "https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta"
},
{
"url": "https://github.com/PowerShell/Win32-OpenSSH/issues/2189"
},
{
"url": "https://winscp.net/eng/docs/history#6.2.2"
},
{
"url": "https://www.bitvise.com/ssh-client-version-history#933"
},
{
"url": "https://github.com/cyd01/KiTTY/issues/520"
},
{
"name": "DSA-5588",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5588"
},
{
"url": "https://github.com/ssh-mitm/ssh-mitm/issues/165"
},
{
"url": "https://news.ycombinator.com/item?id=38732005"
},
{
"name": "[debian-lts-announce] 20231226 [SECURITY] [DLA 3694-1] openssh security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html"
},
{
"name": "GLSA-202312-16",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202312-16"
},
{
"name": "GLSA-202312-17",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202312-17"
},
{
"name": "FEDORA-2023-20feb865d8",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/"
},
{
"name": "FEDORA-2023-cb8c606fbb",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/"
},
{
"name": "FEDORA-2023-e77300e4b5",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/"
},
{
"name": "FEDORA-2023-b87ec6cf47",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/"
},
{
"name": "FEDORA-2023-153404713b",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240105-0004/"
},
{
"name": "FEDORA-2024-3bb23c77f3",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/"
},
{
"name": "FEDORA-2023-55800423a8",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/"
},
{
"name": "FEDORA-2024-d946b9ad25",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/"
},
{
"name": "FEDORA-2024-71c2c6526c",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/"
},
{
"name": "FEDORA-2024-39a8c72ea9",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/"
},
{
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002"
},
{
"name": "FEDORA-2024-ae653fb07b",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/"
},
{
"name": "FEDORA-2024-2705241461",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/"
},
{
"name": "FEDORA-2024-fb32950d11",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/"
},
{
"name": "FEDORA-2024-7b08207cdb",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/"
},
{
"name": "FEDORA-2024-06ebb70bdd",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/"
},
{
"name": "[debian-lts-announce] 20240125 [SECURITY] [DLA 3718-1] php-phpseclib security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html"
},
{
"name": "[debian-lts-announce] 20240125 [SECURITY] [DLA 3719-1] phpseclib security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html"
},
{
"name": "FEDORA-2024-a53b24023d",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/"
},
{
"name": "FEDORA-2024-3fd1bc9276",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/"
},
{
"url": "https://support.apple.com/kb/HT214084"
},
{
"name": "20240313 APPLE-SA-03-07-2024-2 macOS Sonoma 14.4",
"tags": [
"mailing-list"
],
"url": "http://seclists.org/fulldisclosure/2024/Mar/21"
},
{
"name": "[debian-lts-announce] 20240425 [SECURITY] [DLA 3794-1] putty security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html"
},
{
"name": "[oss-security] 20240417 Terrapin vulnerability in Jenkins CLI client",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2024/04/17/8"
},
{
"name": "[oss-security] 20240306 Multiple vulnerabilities in Jenkins plugins",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2024/03/06/3"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2023-48795",
"datePublished": "2023-12-18T00:00:00.000Z",
"dateReserved": "2023-11-20T00:00:00.000Z",
"dateUpdated": "2026-05-12T11:02:25.905Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-48795",
"date": "2026-06-21",
"epss": "0.94072",
"percentile": "0.99836"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"9.6\", \"matchCriteriaId\": \"5308FBBB-F738-41C5-97A4-E40118E957CD\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:putty:putty:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"0.80\", \"matchCriteriaId\": \"A9D807DB-9E20-4792-8A9F-4BFFC841BAB7\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:filezilla-project:filezilla_client:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.66.4\", \"matchCriteriaId\": \"42915485-A4DA-48DD-9C15-415D2D39DC52\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"11.1.0\", \"matchCriteriaId\": \"9F37C9AC-185F-403A-A79B-2D5C8E11AFC4\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"387021A0-AF36-463C-A605-32EA7DAC172E\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:panic:transmit_5:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.10.4\", \"matchCriteriaId\": \"31FFE0AA-FC25-40DE-8EE9-7F4C80ABDE4F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"387021A0-AF36-463C-A605-32EA7DAC172E\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:panic:nova:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"11.8\", \"matchCriteriaId\": \"F2FCF7EF-97D7-44CF-AC74-72D856901755\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:roumenpetrov:pkixssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"14.4\", \"matchCriteriaId\": \"53CAD263-1C60-43BD-86A2-C8DB15FFB4C6\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:winscp:winscp:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.2.2\", \"matchCriteriaId\": \"8FA57F20-C9C1-40A7-B2CD-F3440CCF1D66\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:bitvise:ssh_client:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"9.33\", \"matchCriteriaId\": \"6209E375-10C7-4E65-A2E7-455A686717AC\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:bitvise:ssh_server:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"9.32\", \"matchCriteriaId\": \"1A05CC3C-19C5-4BAA-ABA2-EE1795E0BE81\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lancom-systems:lcos:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.66.4\", \"matchCriteriaId\": \"3A71B523-0778-46C6-A38B-64452E0BB6E7\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lancom-systems:lcos_fx:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1C91308-15E5-40AF-B4D5-3CAD7BC65DDF\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lancom-systems:lcos_lx:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"418940E3-6DD1-4AA6-846A-03E059D0C681\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lancom-systems:lcos_sx:4.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"411BA58A-33B6-44CA-B9D6-7F9042D46961\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lancom-systems:lcos_sx:5.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA17A153-30E4-4731-8706-8F74FCA50993\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lancom-systems:lanconfig:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB736F57-9BE3-4457-A10E-FA88D0932154\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vandyke:securecrt:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"9.4.3\", \"matchCriteriaId\": \"6EB8D02D-87F3-414D-A3EA-43F594DAAC1B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"0.10.6\", \"matchCriteriaId\": \"AAB481DA-FBFE-4CC2-9AE7-22025FA07494\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:net-ssh:net-ssh:7.2.0:*:*:*:*:ruby:*:*\", \"matchCriteriaId\": \"3D6FD459-F8E8-4126-8097-D30B4639404A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh2_project:ssh2:*:*:*:*:*:node.js:*:*\", \"versionEndIncluding\": \"1.11.0\", \"matchCriteriaId\": \"69510F52-C699-4E7D-87EF-7000682888F0\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"1.3.8b\", \"matchCriteriaId\": \"9461430B-3709-45B6-8858-2101F5AE4481\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"12.4\", \"matchCriteriaId\": \"B9A01DF3-E20E-4F29-B5CF-DDF717D01E74\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:crates:thrussh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"0.35.1\", \"matchCriteriaId\": \"D25EB73D-6145-4B7D-8F14-80FD0B458E99\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tera_term_project:tera_term:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"5.1\", \"matchCriteriaId\": \"77594DEC-B5F7-4911-A13D-FFE91C74BAFA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oryx-embedded:cyclone_ssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.3.4\", \"matchCriteriaId\": \"F8FF7E74-2351-4CD9-B717-FA28893293A1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"10.6.0\", \"matchCriteriaId\": \"82A93C12-FEB6-4E82-B283-0ED7820D807E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netsarang:xshell_7:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"build__0144\", \"matchCriteriaId\": \"B480AE79-2FA1-4281-9F0D-0DE812B9354D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.4.0\", \"matchCriteriaId\": \"826B6323-06F8-4B96-8771-3FA15A727B08\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"932D137F-528B-4526-9A89-CD59FA1AB0FE\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DCC81071-B46D-4F5D-AC25-B4A4CCC20C73\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack_platform:16.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4B3000D2-35DF-4A93-9FC0-1AD3AB8349B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openstack_platform:17.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E315FC5C-FF19-43C9-A58A-CF2A5FF13824\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:ceph_storage:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA7EAD12-E398-44AF-9859-F3CA6C63BA6B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4CFF558-3C47-480D-A2F0-BABF26042943\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_serverless:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"77675CB7-67D7-44E9-B7FF-D224B3341AA5\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_gitops:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C0AAA300-691A-4957-8B69-F6888CC971B1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_pipelines:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"45937289-2D64-47CB-A750-5B4F0D4664A0\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_developer_tools_and_services:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97321212-0E07-4CC2-A917-7B5F61AB9A5A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_data_foundation:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E2C021C-A9F0-4EB4-ADED-81D8B57B4563\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_api_for_data_protection:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BF8EFFB-5686-4F28-A68F-1A8854E098CE\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_virtualization:4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9C877879-B84B-471C-80CF-0656521CA8AB\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:storage:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"379A5883-F6DF-41F5-9403-8D17F6605737\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:discovery:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B5B1D946-5978-4818-BF21-A43D9C1365E1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_dev_spaces:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99B8A88B-0B31-4CFF-AFD7-C9D3DDD5790D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:cert-manager_operator_for_red_hat_openshift:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D5A7736-A403-4617-8790-18E46CB74DA6\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:keycloak:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E0DE4E1-5D8D-40F3-8AC8-C7F736966158\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88BF3B2C-B121-483A-AEF2-8082F6DA5310\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EFEC7CA-8DDA-48A6-A7B6-1F1D14792890\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:advanced_cluster_security:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F0FD736A-8730-446A-BA3A-7B608DB62B0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:advanced_cluster_security:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4C504B6-3902-46E2-82B7-48AEC9CDD48D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:crypto:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"0.17.0\", \"matchCriteriaId\": \"F92E56DF-98DF-4328-B37E-4D5744E4103D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:russh_project:russh:*:*:*:*:*:rust:*:*\", \"versionEndExcluding\": \"0.40.2\", \"matchCriteriaId\": \"AC12508E-3C31-44EA-B4F3-29316BE9B189\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sftpgo_project:sftpgo:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.5.6\", \"matchCriteriaId\": \"1750028C-698D-4E84-B727-8A155A46ADEB\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"26.2.1\", \"matchCriteriaId\": \"3A9A8E99-7F4A-4B74-B86B-8B3E8B2A8776\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:matez:jsch:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"0.2.15\", \"matchCriteriaId\": \"61119DB3-4336-4D3B-863A-0CCF4146E5C1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"1.11.1\", \"matchCriteriaId\": \"7BFDD272-3DF0-4E3F-B69A-E7ABF4B18B24\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:asyncssh_project:asyncssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.14.2\", \"matchCriteriaId\": \"FAE46983-0ABC-49F7-AC18-A78FAC7E73AA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2022.83\", \"matchCriteriaId\": \"06BF3368-F232-4E6B-883E-A591EED5C827\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jadaptive:maverick_synergy_java_ssh_api:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.1.0-snapshot\", \"matchCriteriaId\": \"36531FB6-5682-4BF1-9785-E9D6D1C4207B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.11\", \"matchCriteriaId\": \"514ED687-0D7B-479B-82C5-7EB1A5EEC94C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:thorntech:sftp_gateway_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.4.6\", \"matchCriteriaId\": \"83B1AF39-C0B9-4031-B19A-BDDD4F337273\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netgate:pfsense_plus:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"23.09.1\", \"matchCriteriaId\": \"2B71B0EF-888E-45E2-A055-F59CDCC1AFC7\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netgate:pfsense_ce:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.7.2\", \"matchCriteriaId\": \"8F23CDF7-2881-4B4E-B84F-4E04F4ED8CCF\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.6.0\", \"matchCriteriaId\": \"C1795F7A-203F-400E-B09C-0FAF16D01CFC\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:connectbot:sshlib:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.2.22\", \"matchCriteriaId\": \"0D79DDDD-02F0-4C12-BE7F-1B9DF1722C7A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:sshd:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.11.0\", \"matchCriteriaId\": \"E2D7B0CA-C01F-4296-9425-48299E3889C5\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:sshj:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"0.37.0\", \"matchCriteriaId\": \"1C3EB0B8-9E76-4146-AB02-02E20B91D55C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tinyssh:tinyssh:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"20230101\", \"matchCriteriaId\": \"0582468A-149B-429F-978A-2AEDF4BE2606\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:trilead:ssh2:6401:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E4BAF06-5A79-46D7-8C4F-E670BD6B7C2D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:9bis:kitty:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"0.76.1.13\", \"matchCriteriaId\": \"98321BF9-5E8F-4836-842C-47713B1C2775\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gentoo:security:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76BDAFDE-4515-42E6-820F-38AF4A786CF2\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:debian:debian_linux:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5920923E-0D52-44E5-801D-10B82846ED58\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.0\", \"versionEndExcluding\": \"14.4\", \"matchCriteriaId\": \"73160D1F-755B-46D2-969F-DF8E43BB1099\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.\"}, {\"lang\": \"es\", \"value\": \"El protocolo de transporte SSH con ciertas extensiones OpenSSH, que se encuentra en OpenSSH anterior a 9.6 y otros productos, permite a atacantes remotos eludir las comprobaciones de integridad de modo que algunos paquetes se omiten (del mensaje de negociaci\\u00f3n de extensi\\u00f3n) y, en consecuencia, un cliente y un servidor pueden terminar con una conexi\\u00f3n para la cual algunas caracter\\u00edsticas de seguridad han sido degradadas o deshabilitadas, tambi\\u00e9n conocido como un ataque Terrapin. Esto ocurre porque SSH Binary Packet Protocol (BPP), implementado por estas extensiones, maneja mal la fase de protocolo de enlace y el uso de n\\u00fameros de secuencia. Por ejemplo, existe un ataque eficaz contra ChaCha20-Poly1305 (y CBC con Encrypt-then-MAC). La omisi\\u00f3n se produce en chacha20-poly1305@openssh.com y (si se utiliza CBC) en los algoritmos MAC -etm@openssh.com. Esto tambi\\u00e9n afecta a Maverick Synergy Java SSH API anterior a 3.1.0-SNAPSHOT, Dropbear hasta 2022.83, Ssh anterior a 5.1.1 en Erlang/OTP, PuTTY anterior a 0.80 y AsyncSSH anterior a 2.14.2; y podr\\u00eda haber efectos en Bitvise SSH hasta la versi\\u00f3n 9.31, libssh hasta la 0.10.5 y golang.org/x/crypto hasta el 17 de diciembre de 2023.\"}]",
"id": "CVE-2023-48795",
"lastModified": "2024-12-02T14:54:27.177",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"baseScore\": 5.9, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 3.6}]}",
"published": "2023-12-18T16:15:10.897",
"references": "[{\"url\": \"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2024/Mar/21\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/18/3\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/19/5\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/20/3\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Mitigation\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/03/06/3\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/17/8\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://access.redhat.com/security/cve/cve-2023-48795\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://bugs.gentoo.org/920280\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2254210\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1217950\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://crates.io/crates/thrussh/versions\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://filezilla-project.org/versions.php\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://forum.netgate.com/topic/184941/terrapin-ssh-attack\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/NixOS/nixpkgs/pull/275249\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/issues/2189\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/advisories/GHSA-45x7-px36-x8w8\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/apache/mina-sshd/issues/445\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/cyd01/KiTTY/issues/520\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/erlang/otp/releases/tag/OTP-26.2.1\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/hierynomus/sshj/issues/916\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/janmojzis/tinyssh/issues/81\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/libssh2/libssh2/pull/1291\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mitigation\"]}, {\"url\": \"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15\", \"source\": \"cve@mitre.org\", \"tags\": [\"Product\"]}, {\"url\": \"https://github.com/mwiede/jsch/issues/457\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/mwiede/jsch/pull/461\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/openssh/openssh-portable/commits/master\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/paramiko/paramiko/issues/2337\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/proftpd/proftpd/issues/456\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/rapier1/hpn-ssh/releases\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/ronf/asyncssh/tags\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/ssh-mitm/ssh-mitm/issues/165\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/warp-tech/russh/releases/tag/v0.40.2\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://gitlab.com/libssh/libssh-mirror/-/tags\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://help.panic.com/releasenotes/transmit5/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://matt.ucc.asn.au/dropbear/CHANGES\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38684904\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38685286\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38732005\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://nova.app/releases/#v11.8\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://oryx-embedded.com/download/#changelog\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://roumenpetrov.info/secsh/#news20231220\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/CVE-2023-48795\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/libssh2\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-16\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-17\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240105-0004/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT214084\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://thorntech.com/cve-2023-48795-and-sftp-gateway/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://twitter.com/TrueSkrillor/status/1736774389725565005\", \"source\": \"cve@mitre.org\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://ubuntu.com/security/CVE-2023-48795\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://winscp.net/eng/docs/history#6.2.2\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.bitvise.com/ssh-client-version-history#933\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.bitvise.com/ssh-server-version-history\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5586\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5588\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.netsarang.com/en/xshell-update-history/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.openssh.com/openbsd.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.openssh.com/txt/release-9.6\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/18/2\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/20/3\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Mitigation\"]}, {\"url\": \"https://www.paramiko.org/changelog.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://www.terrapin-attack.com\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"https://www.theregister.com/2023/12/20/terrapin_attack_ssh\", \"source\": \"cve@mitre.org\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://www.vandyke.com/products/securecrt/history.txt\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2024/Mar/21\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/18/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/19/5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/20/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Mitigation\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/03/06/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/17/8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://access.redhat.com/security/cve/cve-2023-48795\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://bugs.gentoo.org/920280\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2254210\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1217950\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://crates.io/crates/thrussh/versions\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://filezilla-project.org/versions.php\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://forum.netgate.com/topic/184941/terrapin-ssh-attack\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/NixOS/nixpkgs/pull/275249\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/issues/2189\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/advisories/GHSA-45x7-px36-x8w8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/apache/mina-sshd/issues/445\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/cyd01/KiTTY/issues/520\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/erlang/otp/releases/tag/OTP-26.2.1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/hierynomus/sshj/issues/916\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/janmojzis/tinyssh/issues/81\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/libssh2/libssh2/pull/1291\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\"]}, {\"url\": \"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Product\"]}, {\"url\": \"https://github.com/mwiede/jsch/issues/457\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/mwiede/jsch/pull/461\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/openssh/openssh-portable/commits/master\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://github.com/paramiko/paramiko/issues/2337\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/proftpd/proftpd/issues/456\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/rapier1/hpn-ssh/releases\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/ronf/asyncssh/tags\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/ssh-mitm/ssh-mitm/issues/165\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/warp-tech/russh/releases/tag/v0.40.2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://gitlab.com/libssh/libssh-mirror/-/tags\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://help.panic.com/releasenotes/transmit5/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://matt.ucc.asn.au/dropbear/CHANGES\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38684904\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38685286\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38732005\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://nova.app/releases/#v11.8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://oryx-embedded.com/download/#changelog\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://roumenpetrov.info/secsh/#news20231220\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/CVE-2023-48795\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/libssh2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-16\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-17\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240105-0004/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT214084\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://thorntech.com/cve-2023-48795-and-sftp-gateway/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://twitter.com/TrueSkrillor/status/1736774389725565005\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://ubuntu.com/security/CVE-2023-48795\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://winscp.net/eng/docs/history#6.2.2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.bitvise.com/ssh-client-version-history#933\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.bitvise.com/ssh-server-version-history\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5586\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5588\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.netsarang.com/en/xshell-update-history/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.openssh.com/openbsd.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.openssh.com/txt/release-9.6\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/18/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/20/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Mitigation\"]}, {\"url\": \"https://www.paramiko.org/changelog.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://www.terrapin-attack.com\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"https://www.theregister.com/2023/12/20/terrapin_attack_ssh\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Press/Media Coverage\"]}, {\"url\": \"https://www.vandyke.com/products/securecrt/history.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Analyzed",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-354\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-48795\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2023-12-18T16:15:10.897\",\"lastModified\":\"2026-05-12T11:16:15.010\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.\"},{\"lang\":\"es\",\"value\":\"El protocolo de transporte SSH con ciertas extensiones OpenSSH, que se encuentra en OpenSSH anterior a 9.6 y otros productos, permite a atacantes remotos eludir las comprobaciones de integridad de modo que algunos paquetes se omiten (del mensaje de negociaci\u00f3n de extensi\u00f3n) y, en consecuencia, un cliente y un servidor pueden terminar con una conexi\u00f3n para la cual algunas caracter\u00edsticas de seguridad han sido degradadas o deshabilitadas, tambi\u00e9n conocido como un ataque Terrapin. Esto ocurre porque SSH Binary Packet Protocol (BPP), implementado por estas extensiones, maneja mal la fase de protocolo de enlace y el uso de n\u00fameros de secuencia. Por ejemplo, existe un ataque eficaz contra ChaCha20-Poly1305 (y CBC con Encrypt-then-MAC). La omisi\u00f3n se produce en chacha20-poly1305@openssh.com y (si se utiliza CBC) en los algoritmos MAC -etm@openssh.com. Esto tambi\u00e9n afecta a Maverick Synergy Java SSH API anterior a 3.1.0-SNAPSHOT, Dropbear hasta 2022.83, Ssh anterior a 5.1.1 en Erlang/OTP, PuTTY anterior a 0.80 y AsyncSSH anterior a 2.14.2; y podr\u00eda haber efectos en Bitvise SSH hasta la versi\u00f3n 9.31, libssh hasta la 0.10.5 y golang.org/x/crypto hasta el 17 de diciembre de 2023.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-354\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-354\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.6\",\"matchCriteriaId\":\"5308FBBB-F738-41C5-97A4-E40118E957CD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:putty:putty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.80\",\"matchCriteriaId\":\"A9D807DB-9E20-4792-8A9F-4BFFC841BAB7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:filezilla-project:filezilla_client:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.66.4\",\"matchCriteriaId\":\"42915485-A4DA-48DD-9C15-415D2D39DC52\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"387021A0-AF36-463C-A605-32EA7DAC172E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:panic:transmit_5:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.10.4\",\"matchCriteriaId\":\"31FFE0AA-FC25-40DE-8EE9-7F4C80ABDE4F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"387021A0-AF36-463C-A605-32EA7DAC172E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:panic:nova:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.8\",\"matchCriteriaId\":\"F2FCF7EF-97D7-44CF-AC74-72D856901755\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:roumenpetrov:pkixssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.4\",\"matchCriteriaId\":\"53CAD263-1C60-43BD-86A2-C8DB15FFB4C6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:winscp:winscp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.2.2\",\"matchCriteriaId\":\"8FA57F20-C9C1-40A7-B2CD-F3440CCF1D66\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:bitvise:ssh_client:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.33\",\"matchCriteriaId\":\"6209E375-10C7-4E65-A2E7-455A686717AC\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:bitvise:ssh_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.32\",\"matchCriteriaId\":\"1A05CC3C-19C5-4BAA-ABA2-EE1795E0BE81\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lancom-systems:lcos:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.66.4\",\"matchCriteriaId\":\"3A71B523-0778-46C6-A38B-64452E0BB6E7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lancom-systems:lcos_fx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1C91308-15E5-40AF-B4D5-3CAD7BC65DDF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lancom-systems:lcos_lx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"418940E3-6DD1-4AA6-846A-03E059D0C681\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lancom-systems:lcos_sx:4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"411BA58A-33B6-44CA-B9D6-7F9042D46961\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lancom-systems:lcos_sx:5.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA17A153-30E4-4731-8706-8F74FCA50993\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lancom-systems:lanconfig:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB736F57-9BE3-4457-A10E-FA88D0932154\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vandyke:securecrt:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.4.3\",\"matchCriteriaId\":\"6EB8D02D-87F3-414D-A3EA-43F594DAAC1B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.10.6\",\"matchCriteriaId\":\"AAB481DA-FBFE-4CC2-9AE7-22025FA07494\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:net-ssh:net-ssh:7.2.0:*:*:*:*:ruby:*:*\",\"matchCriteriaId\":\"3D6FD459-F8E8-4126-8097-D30B4639404A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh2_project:ssh2:*:*:*:*:*:node.js:*:*\",\"versionEndIncluding\":\"1.11.0\",\"matchCriteriaId\":\"69510F52-C699-4E7D-87EF-7000682888F0\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.3.8b\",\"matchCriteriaId\":\"9461430B-3709-45B6-8858-2101F5AE4481\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"12.4\",\"matchCriteriaId\":\"B9A01DF3-E20E-4F29-B5CF-DDF717D01E74\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:crates:thrussh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.35.1\",\"matchCriteriaId\":\"D25EB73D-6145-4B7D-8F14-80FD0B458E99\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tera_term_project:tera_term:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"5.1\",\"matchCriteriaId\":\"77594DEC-B5F7-4911-A13D-FFE91C74BAFA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oryx-embedded:cyclone_ssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.3.4\",\"matchCriteriaId\":\"F8FF7E74-2351-4CD9-B717-FA28893293A1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"10.6.0\",\"matchCriteriaId\":\"82A93C12-FEB6-4E82-B283-0ED7820D807E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netsarang:xshell_7:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"build__0144\",\"matchCriteriaId\":\"B480AE79-2FA1-4281-9F0D-0DE812B9354D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.4.0\",\"matchCriteriaId\":\"826B6323-06F8-4B96-8771-3FA15A727B08\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"932D137F-528B-4526-9A89-CD59FA1AB0FE\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCC81071-B46D-4F5D-AC25-B4A4CCC20C73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack_platform:16.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B3000D2-35DF-4A93-9FC0-1AD3AB8349B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack_platform:17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E315FC5C-FF19-43C9-A58A-CF2A5FF13824\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ceph_storage:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA7EAD12-E398-44AF-9859-F3CA6C63BA6B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_serverless:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77675CB7-67D7-44E9-B7FF-D224B3341AA5\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_gitops:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0AAA300-691A-4957-8B69-F6888CC971B1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_pipelines:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45937289-2D64-47CB-A750-5B4F0D4664A0\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_developer_tools_and_services:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97321212-0E07-4CC2-A917-7B5F61AB9A5A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_data_foundation:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E2C021C-A9F0-4EB4-ADED-81D8B57B4563\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_api_for_data_protection:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BF8EFFB-5686-4F28-A68F-1A8854E098CE\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_virtualization:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C877879-B84B-471C-80CF-0656521CA8AB\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:storage:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"379A5883-F6DF-41F5-9403-8D17F6605737\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:discovery:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5B1D946-5978-4818-BF21-A43D9C1365E1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_dev_spaces:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99B8A88B-0B31-4CFF-AFD7-C9D3DDD5790D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cert-manager_operator_for_red_hat_openshift:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D5A7736-A403-4617-8790-18E46CB74DA6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:keycloak:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E0DE4E1-5D8D-40F3-8AC8-C7F736966158\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88BF3B2C-B121-483A-AEF2-8082F6DA5310\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EFEC7CA-8DDA-48A6-A7B6-1F1D14792890\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:advanced_cluster_security:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0FD736A-8730-446A-BA3A-7B608DB62B0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:advanced_cluster_security:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4C504B6-3902-46E2-82B7-48AEC9CDD48D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:crypto:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.17.0\",\"matchCriteriaId\":\"F92E56DF-98DF-4328-B37E-4D5744E4103D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:russh_project:russh:*:*:*:*:*:rust:*:*\",\"versionEndExcluding\":\"0.40.2\",\"matchCriteriaId\":\"AC12508E-3C31-44EA-B4F3-29316BE9B189\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sftpgo_project:sftpgo:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.5.6\",\"matchCriteriaId\":\"1750028C-698D-4E84-B727-8A155A46ADEB\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"22.3.4.27\",\"matchCriteriaId\":\"B38C0997-A8CC-473C-98CF-641FD21EB411\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"23.0\",\"versionEndExcluding\":\"23.3.4.20\",\"matchCriteriaId\":\"5887F3E2-9214-4FAE-8768-441D770E27C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"24.0\",\"versionEndExcluding\":\"24.3.4.15\",\"matchCriteriaId\":\"8D7CB988-94C4-45BE-AD9D-9C16899A71DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"25.0\",\"versionEndExcluding\":\"25.3.2.8\",\"matchCriteriaId\":\"EB749F4B-99FC-4AE8-BDB3-85B081B52F82\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"26.0\",\"versionEndExcluding\":\"26.2.1\",\"matchCriteriaId\":\"2380909A-BA9B-4A76-82F2-D2D0EF242E57\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:matez:jsch:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.2.15\",\"matchCriteriaId\":\"61119DB3-4336-4D3B-863A-0CCF4146E5C1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.11.1\",\"matchCriteriaId\":\"7BFDD272-3DF0-4E3F-B69A-E7ABF4B18B24\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:asyncssh_project:asyncssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.14.2\",\"matchCriteriaId\":\"FAE46983-0ABC-49F7-AC18-A78FAC7E73AA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2022.83\",\"matchCriteriaId\":\"06BF3368-F232-4E6B-883E-A591EED5C827\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jadaptive:maverick_synergy_java_ssh_api:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.1.0-snapshot\",\"matchCriteriaId\":\"36531FB6-5682-4BF1-9785-E9D6D1C4207B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.9.1.5\",\"matchCriteriaId\":\"A86A51EA-B501-42F8-91E6-4EA97DED767C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.10\",\"versionEndExcluding\":\"4.11.1.7\",\"matchCriteriaId\":\"70989970-E224-4D1C-941E-BBFB2AE7285C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.12\",\"versionEndExcluding\":\"4.13.2.4\",\"matchCriteriaId\":\"E7819CE3-2849-4D15-874B-F6A68EF6D65F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.14\",\"versionEndExcluding\":\"4.15.3.1\",\"matchCriteriaId\":\"F6A4DD8B-06AD-4F13-8F7E-1E2AAF81C119\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0\",\"versionEndExcluding\":\"5.1.1\",\"matchCriteriaId\":\"D91ED5E1-1D75-4B63-B0A2-B2EB6D4AC685\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:thorntech:sftp_gateway_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.4.6\",\"matchCriteriaId\":\"83B1AF39-C0B9-4031-B19A-BDDD4F337273\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netgate:pfsense_plus:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"23.09.1\",\"matchCriteriaId\":\"2B71B0EF-888E-45E2-A055-F59CDCC1AFC7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netgate:pfsense_ce:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.7.2\",\"matchCriteriaId\":\"8F23CDF7-2881-4B4E-B84F-4E04F4ED8CCF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.6.0\",\"matchCriteriaId\":\"C1795F7A-203F-400E-B09C-0FAF16D01CFC\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:connectbot:sshlib:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.2.22\",\"matchCriteriaId\":\"0D79DDDD-02F0-4C12-BE7F-1B9DF1722C7A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:sshd:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.11.0\",\"matchCriteriaId\":\"E2D7B0CA-C01F-4296-9425-48299E3889C5\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:sshj:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"0.37.0\",\"matchCriteriaId\":\"1C3EB0B8-9E76-4146-AB02-02E20B91D55C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tinyssh:tinyssh:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"20230101\",\"matchCriteriaId\":\"0582468A-149B-429F-978A-2AEDF4BE2606\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:trilead:ssh2:6401:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E4BAF06-5A79-46D7-8C4F-E670BD6B7C2D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:9bis:kitty:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"0.76.1.13\",\"matchCriteriaId\":\"98321BF9-5E8F-4836-842C-47713B1C2775\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gentoo:security:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76BDAFDE-4515-42E6-820F-38AF4A786CF2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:debian:debian_linux:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5920923E-0D52-44E5-801D-10B82846ED58\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.0\",\"versionEndExcluding\":\"14.4\",\"matchCriteriaId\":\"73160D1F-755B-46D2-969F-DF8E43BB1099\"}]}]}],\"references\":[{\"url\":\"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://seclists.org/fulldisclosure/2024/Mar/21\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/18/3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/19/5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/20/3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Mitigation\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/03/06/3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/04/17/8\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://access.redhat.com/security/cve/cve-2023-48795\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://bugs.gentoo.org/920280\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2254210\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1217950\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://crates.io/crates/thrussh/versions\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://filezilla-project.org/versions.php\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://forum.netgate.com/topic/184941/terrapin-ssh-attack\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/NixOS/nixpkgs/pull/275249\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/PowerShell/Win32-OpenSSH/issues/2189\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/advisories/GHSA-45x7-px36-x8w8\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/apache/mina-sshd/issues/445\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/cyd01/KiTTY/issues/520\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/erlang/otp/releases/tag/OTP-26.2.1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/hierynomus/sshj/issues/916\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/janmojzis/tinyssh/issues/81\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/libssh2/libssh2/pull/1291\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mitigation\"]},{\"url\":\"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/mwiede/jsch/issues/457\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/mwiede/jsch/pull/461\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/openssh/openssh-portable/commits/master\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/paramiko/paramiko/issues/2337\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/proftpd/proftpd/issues/456\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/rapier1/hpn-ssh/releases\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ronf/asyncssh/tags\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ssh-mitm/ssh-mitm/issues/165\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/warp-tech/russh/releases/tag/v0.40.2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://gitlab.com/libssh/libssh-mirror/-/tags\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://help.panic.com/releasenotes/transmit5/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://matt.ucc.asn.au/dropbear/CHANGES\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://news.ycombinator.com/item?id=38684904\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=38685286\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=38732005\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://nova.app/releases/#v11.8\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://oryx-embedded.com/download/#changelog\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://roumenpetrov.info/secsh/#news20231220\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://security-tracker.debian.org/tracker/CVE-2023-48795\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security-tracker.debian.org/tracker/source-package/libssh2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://security.gentoo.org/glsa/202312-16\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202312-17\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240105-0004/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT214084\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://thorntech.com/cve-2023-48795-and-sftp-gateway/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://twitter.com/TrueSkrillor/status/1736774389725565005\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://ubuntu.com/security/CVE-2023-48795\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://winscp.net/eng/docs/history#6.2.2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.bitvise.com/ssh-client-version-history#933\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.bitvise.com/ssh-server-version-history\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5586\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5588\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.netsarang.com/en/xshell-update-history/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openssh.com/openbsd.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openssh.com/txt/release-9.6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2023/12/18/2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2023/12/20/3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Mitigation\"]},{\"url\":\"https://www.paramiko.org/changelog.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://www.terrapin-attack.com\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"https://www.theregister.com/2023/12/20/terrapin_attack_ssh\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://www.vandyke.com/products/securecrt/history.txt\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://seclists.org/fulldisclosure/2024/Mar/21\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/18/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/19/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/20/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Mitigation\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/03/06/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/04/17/8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://access.redhat.com/security/cve/cve-2023-48795\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://bugs.gentoo.org/920280\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2254210\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1217950\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://crates.io/crates/thrussh/versions\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://filezilla-project.org/versions.php\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://forum.netgate.com/topic/184941/terrapin-ssh-attack\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/NixOS/nixpkgs/pull/275249\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/PowerShell/Win32-OpenSSH/issues/2189\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/advisories/GHSA-45x7-px36-x8w8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/apache/mina-sshd/issues/445\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/cyd01/KiTTY/issues/520\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/erlang/otp/releases/tag/OTP-26.2.1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/hierynomus/sshj/issues/916\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/janmojzis/tinyssh/issues/81\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/libssh2/libssh2/pull/1291\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\"]},{\"url\":\"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/mwiede/jsch/issues/457\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/mwiede/jsch/pull/461\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/openssh/openssh-portable/commits/master\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/paramiko/paramiko/issues/2337\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/proftpd/proftpd/issues/456\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/rapier1/hpn-ssh/releases\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ronf/asyncssh/tags\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ssh-mitm/ssh-mitm/issues/165\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/warp-tech/russh/releases/tag/v0.40.2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://gitlab.com/libssh/libssh-mirror/-/tags\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://help.panic.com/releasenotes/transmit5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://matt.ucc.asn.au/dropbear/CHANGES\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://news.ycombinator.com/item?id=38684904\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=38685286\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=38732005\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://nova.app/releases/#v11.8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://oryx-embedded.com/download/#changelog\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://roumenpetrov.info/secsh/#news20231220\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://security-tracker.debian.org/tracker/CVE-2023-48795\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security-tracker.debian.org/tracker/source-package/libssh2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://security.gentoo.org/glsa/202312-16\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202312-17\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240105-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT214084\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://thorntech.com/cve-2023-48795-and-sftp-gateway/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://twitter.com/TrueSkrillor/status/1736774389725565005\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://ubuntu.com/security/CVE-2023-48795\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://winscp.net/eng/docs/history#6.2.2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.bitvise.com/ssh-client-version-history#933\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.bitvise.com/ssh-server-version-history\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5586\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5588\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.netsarang.com/en/xshell-update-history/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openssh.com/openbsd.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openssh.com/txt/release-9.6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2023/12/18/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2023/12/20/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Mitigation\"]},{\"url\":\"https://www.paramiko.org/changelog.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://www.terrapin-attack.com\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://www.theregister.com/2023/12/20/terrapin_attack_ssh\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://www.vandyke.com/products/securecrt/history.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-082556.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-364175.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-769027.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-794697.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-915275.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit\"}, {\"url\": \"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability\"}, {\"url\": \"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://matt.ucc.asn.au/dropbear/CHANGES\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.netsarang.com/en/xshell-update-history/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.paramiko.org/changelog.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.openssh.com/openbsd.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/openssh/openssh-portable/commits/master\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.bitvise.com/ssh-server-version-history\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/ronf/asyncssh/tags\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://gitlab.com/libssh/libssh-mirror/-/tags\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.openssh.com/txt/release-9.6\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.terrapin-attack.com\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://thorntech.com/cve-2023-48795-and-sftp-gateway/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/warp-tech/russh/releases/tag/v0.40.2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/18/2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://twitter.com/TrueSkrillor/status/1736774389725565005\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/paramiko/paramiko/issues/2337\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38684904\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38685286\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/18/3\", \"name\": \"[oss-security] 20231218 CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://github.com/mwiede/jsch/issues/457\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/erlang/otp/releases/tag/OTP-26.2.1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/advisories/GHSA-45x7-px36-x8w8\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/libssh2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/CVE-2023-48795\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1217950\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2254210\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugs.gentoo.org/920280\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://ubuntu.com/security/CVE-2023-48795\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/cve-2023-48795\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/mwiede/jsch/pull/461\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/libssh2/libssh2/pull/1291\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://forum.netgate.com/topic/184941/terrapin-ssh-attack\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/rapier1/hpn-ssh/releases\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/proftpd/proftpd/issues/456\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://oryx-embedded.com/download/#changelog\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://crates.io/crates/thrussh/versions\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/NixOS/nixpkgs/pull/275249\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/19/5\", \"name\": \"[oss-security] 20231219 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/20/3\", \"name\": \"[oss-security] 20231220 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/apache/mina-sshd/issues/445\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/hierynomus/sshj/issues/916\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/janmojzis/tinyssh/issues/81\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/20/3\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\", \"name\": \"FEDORA-2023-0733306be9\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5586\", \"name\": \"DSA-5586\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.theregister.com/2023/12/20/terrapin_attack_ssh\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://filezilla-project.org/versions.php\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://nova.app/releases/#v11.8\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://roumenpetrov.info/secsh/#news20231220\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.vandyke.com/products/securecrt/history.txt\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://help.panic.com/releasenotes/transmit5/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/issues/2189\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://winscp.net/eng/docs/history#6.2.2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.bitvise.com/ssh-client-version-history#933\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/cyd01/KiTTY/issues/520\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5588\", \"name\": \"DSA-5588\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://github.com/ssh-mitm/ssh-mitm/issues/165\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=38732005\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html\", \"name\": \"[debian-lts-announce] 20231226 [SECURITY] [DLA 3694-1] openssh security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-16\", \"name\": \"GLSA-202312-16\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-17\", \"name\": \"GLSA-202312-17\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\", \"name\": \"FEDORA-2023-20feb865d8\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/\", \"name\": \"FEDORA-2023-cb8c606fbb\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\", \"name\": \"FEDORA-2023-e77300e4b5\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/\", \"name\": \"FEDORA-2023-b87ec6cf47\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/\", \"name\": \"FEDORA-2023-153404713b\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240105-0004/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/\", \"name\": \"FEDORA-2024-3bb23c77f3\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\", \"name\": \"FEDORA-2023-55800423a8\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\", \"name\": \"FEDORA-2024-d946b9ad25\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/\", \"name\": \"FEDORA-2024-71c2c6526c\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\", \"name\": \"FEDORA-2024-39a8c72ea9\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\", \"name\": \"FEDORA-2024-ae653fb07b\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\", \"name\": \"FEDORA-2024-2705241461\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\", \"name\": \"FEDORA-2024-fb32950d11\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\", \"name\": \"FEDORA-2024-7b08207cdb\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\", \"name\": \"FEDORA-2024-06ebb70bdd\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html\", \"name\": \"[debian-lts-announce] 20240125 [SECURITY] [DLA 3718-1] php-phpseclib security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html\", \"name\": \"[debian-lts-announce] 20240125 [SECURITY] [DLA 3719-1] phpseclib security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\", \"name\": \"FEDORA-2024-a53b24023d\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\", \"name\": \"FEDORA-2024-3fd1bc9276\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://support.apple.com/kb/HT214084\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2024/Mar/21\", \"name\": \"20240313 APPLE-SA-03-07-2024-2 macOS Sonoma 14.4\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html\", \"name\": \"[debian-lts-announce] 20240425 [SECURITY] [DLA 3794-1] putty security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/17/8\", \"name\": \"[oss-security] 20240417 Terrapin vulnerability in Jenkins CLI client\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/03/06/3\", \"name\": \"[oss-security] 20240306 Multiple vulnerabilities in Jenkins plugins\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T22:05:21.417Z\"}}, {\"affected\": [{\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM APE1808\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1500 CPU 1518-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"x_adpType\": \"supplier\", \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-794697.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-364175.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-915275.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-769027.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-082556.html\"}], \"providerMetadata\": {\"orgId\": \"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\", \"shortName\": \"siemens-SADP\", \"dateUpdated\": \"2026-05-12T11:02:25.905Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.9, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-48795\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2023-12-22T05:01:05.519910Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-354\", \"description\": \"CWE-354 Improper Validation of Integrity Check Value\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-08-27T20:45:13.765Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html\"}, {\"url\": \"https://matt.ucc.asn.au/dropbear/CHANGES\"}, {\"url\": \"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES\"}, {\"url\": \"https://www.netsarang.com/en/xshell-update-history/\"}, {\"url\": \"https://www.paramiko.org/changelog.html\"}, {\"url\": \"https://www.openssh.com/openbsd.html\"}, {\"url\": \"https://github.com/openssh/openssh-portable/commits/master\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ\"}, {\"url\": \"https://www.bitvise.com/ssh-server-version-history\"}, {\"url\": \"https://github.com/ronf/asyncssh/tags\"}, {\"url\": \"https://gitlab.com/libssh/libssh-mirror/-/tags\"}, {\"url\": \"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/\"}, {\"url\": \"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42\"}, {\"url\": \"https://www.openssh.com/txt/release-9.6\"}, {\"url\": \"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/\"}, {\"url\": \"https://www.terrapin-attack.com\"}, {\"url\": \"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25\"}, {\"url\": \"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst\"}, {\"url\": \"https://thorntech.com/cve-2023-48795-and-sftp-gateway/\"}, {\"url\": \"https://github.com/warp-tech/russh/releases/tag/v0.40.2\"}, {\"url\": \"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/18/2\"}, {\"url\": \"https://twitter.com/TrueSkrillor/status/1736774389725565005\"}, {\"url\": \"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d\"}, {\"url\": \"https://github.com/paramiko/paramiko/issues/2337\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg\"}, {\"url\": \"https://news.ycombinator.com/item?id=38684904\"}, {\"url\": \"https://news.ycombinator.com/item?id=38685286\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/18/3\", \"name\": \"[oss-security] 20231218 CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://github.com/mwiede/jsch/issues/457\"}, {\"url\": \"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10\u0026id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6\"}, {\"url\": \"https://github.com/erlang/otp/releases/tag/OTP-26.2.1\"}, {\"url\": \"https://github.com/advisories/GHSA-45x7-px36-x8w8\"}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/libssh2\"}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg\"}, {\"url\": \"https://security-tracker.debian.org/tracker/CVE-2023-48795\"}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1217950\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2254210\"}, {\"url\": \"https://bugs.gentoo.org/920280\"}, {\"url\": \"https://ubuntu.com/security/CVE-2023-48795\"}, {\"url\": \"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/\"}, {\"url\": \"https://access.redhat.com/security/cve/cve-2023-48795\"}, {\"url\": \"https://github.com/mwiede/jsch/pull/461\"}, {\"url\": \"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6\"}, {\"url\": \"https://github.com/libssh2/libssh2/pull/1291\"}, {\"url\": \"https://forum.netgate.com/topic/184941/terrapin-ssh-attack\"}, {\"url\": \"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5\"}, {\"url\": \"https://github.com/rapier1/hpn-ssh/releases\"}, {\"url\": \"https://github.com/proftpd/proftpd/issues/456\"}, {\"url\": \"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1\"}, {\"url\": \"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15\"}, {\"url\": \"https://oryx-embedded.com/download/#changelog\"}, {\"url\": \"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update\"}, {\"url\": \"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22\"}, {\"url\": \"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab\"}, {\"url\": \"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3\"}, {\"url\": \"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC\"}, {\"url\": \"https://crates.io/crates/thrussh/versions\"}, {\"url\": \"https://github.com/NixOS/nixpkgs/pull/275249\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/19/5\", \"name\": \"[oss-security] 20231219 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc\"}, {\"url\": \"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/20/3\", \"name\": \"[oss-security] 20231220 Re: CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html\"}, {\"url\": \"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES\"}, {\"url\": \"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES\"}, {\"url\": \"https://github.com/apache/mina-sshd/issues/445\"}, {\"url\": \"https://github.com/hierynomus/sshj/issues/916\"}, {\"url\": \"https://github.com/janmojzis/tinyssh/issues/81\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/12/20/3\"}, {\"url\": \"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2\"}, {\"url\": \"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/\", \"name\": \"FEDORA-2023-0733306be9\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5586\", \"name\": \"DSA-5586\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508\"}, {\"url\": \"https://www.theregister.com/2023/12/20/terrapin_attack_ssh\"}, {\"url\": \"https://filezilla-project.org/versions.php\"}, {\"url\": \"https://nova.app/releases/#v11.8\"}, {\"url\": \"https://roumenpetrov.info/secsh/#news20231220\"}, {\"url\": \"https://www.vandyke.com/products/securecrt/history.txt\"}, {\"url\": \"https://help.panic.com/releasenotes/transmit5/\"}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta\"}, {\"url\": \"https://github.com/PowerShell/Win32-OpenSSH/issues/2189\"}, {\"url\": \"https://winscp.net/eng/docs/history#6.2.2\"}, {\"url\": \"https://www.bitvise.com/ssh-client-version-history#933\"}, {\"url\": \"https://github.com/cyd01/KiTTY/issues/520\"}, {\"url\": \"https://www.debian.org/security/2023/dsa-5588\", \"name\": \"DSA-5588\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://github.com/ssh-mitm/ssh-mitm/issues/165\"}, {\"url\": \"https://news.ycombinator.com/item?id=38732005\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html\", \"name\": \"[debian-lts-announce] 20231226 [SECURITY] [DLA 3694-1] openssh security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-16\", \"name\": \"GLSA-202312-16\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202312-17\", \"name\": \"GLSA-202312-17\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/\", \"name\": \"FEDORA-2023-20feb865d8\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/\", \"name\": \"FEDORA-2023-cb8c606fbb\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/\", \"name\": \"FEDORA-2023-e77300e4b5\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/\", \"name\": \"FEDORA-2023-b87ec6cf47\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/\", \"name\": \"FEDORA-2023-153404713b\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240105-0004/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/\", \"name\": \"FEDORA-2024-3bb23c77f3\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/\", \"name\": \"FEDORA-2023-55800423a8\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/\", \"name\": \"FEDORA-2024-d946b9ad25\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/\", \"name\": \"FEDORA-2024-71c2c6526c\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/\", \"name\": \"FEDORA-2024-39a8c72ea9\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/\", \"name\": \"FEDORA-2024-ae653fb07b\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/\", \"name\": \"FEDORA-2024-2705241461\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/\", \"name\": \"FEDORA-2024-fb32950d11\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/\", \"name\": \"FEDORA-2024-7b08207cdb\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/\", \"name\": \"FEDORA-2024-06ebb70bdd\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html\", \"name\": \"[debian-lts-announce] 20240125 [SECURITY] [DLA 3718-1] php-phpseclib security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html\", \"name\": \"[debian-lts-announce] 20240125 [SECURITY] [DLA 3719-1] phpseclib security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/\", \"name\": \"FEDORA-2024-a53b24023d\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/\", \"name\": \"FEDORA-2024-3fd1bc9276\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT214084\"}, {\"url\": \"http://seclists.org/fulldisclosure/2024/Mar/21\", \"name\": \"20240313 APPLE-SA-03-07-2024-2 macOS Sonoma 14.4\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html\", \"name\": \"[debian-lts-announce] 20240425 [SECURITY] [DLA 3794-1] putty security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/17/8\", \"name\": \"[oss-security] 20240417 Terrapin vulnerability in Jenkins CLI client\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/03/06/3\", \"name\": \"[oss-security] 20240306 Multiple vulnerabilities in Jenkins plugins\", \"tags\": [\"mailing-list\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2024-05-01T18:06:23.972Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-48795\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-12T11:02:25.905Z\", \"dateReserved\": \"2023-11-20T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2023-12-18T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2024:0429
Vulnerability from csaf_redhat - Published: 2024-01-25 08:14 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: openssh security update
Severity
Moderate
Notes
Topic: An update for openssh is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
* openssh: potential command injection via shell metacharacters (CVE-2023-51385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.
6.5 (Medium)
Affected products
Fixed
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssh is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\n* openssh: potential command injection via shell metacharacters (CVE-2023-51385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0429",
"url": "https://access.redhat.com/errata/RHSA-2024:0429"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0429.json"
}
],
"title": "Red Hat Security Advisory: openssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:26+00:00",
"generator": {
"date": "2026-06-16T21:48:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0429",
"initial_release_date": "2024-01-25T08:14:09+00:00",
"revision_history": [
{
"date": "2024-01-25T08:14:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-25T08:14:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.6::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-15.el8_6.3.src",
"product": {
"name": "openssh-0:8.0p1-15.el8_6.3.src",
"product_id": "openssh-0:8.0p1-15.el8_6.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-15.el8_6.3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.15.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"product": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"product_id": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-15.el8_6.3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.15.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"product": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"product_id": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-15.el8_6.3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.15.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"product": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"product_id": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-15.el8_6.3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-server-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.15.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"product": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"product_id": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-15.el8_6.3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-25T08:14:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0429"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2023-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: potential command injection via shell metacharacters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability to execute OS commands is dependent on what quoting is present in the user-supplied ssh_config directive. However, it is generally the user\u0027s responsibility to validate arguments passed to SSH.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-51385"
},
{
"category": "external",
"summary": "RHBZ#2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-25T08:14:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0429"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"AppStream-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"AppStream-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.src",
"BaseOS-8.6.0.Z.EUS:openssh-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-debugsource-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.15.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.s390x",
"BaseOS-8.6.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.15.el8_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: potential command injection via shell metacharacters"
}
]
}
RHSA-2024:0455
Vulnerability from csaf_redhat - Published: 2024-01-25 09:21 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: openssh security update
Severity
Moderate
Notes
Topic: An update for openssh is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
* openssh: potential command injection via shell metacharacters (CVE-2023-51385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
114 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.
6.5 (Medium)
Affected products
Fixed
114 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssh is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\n* openssh: potential command injection via shell metacharacters (CVE-2023-51385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0455",
"url": "https://access.redhat.com/errata/RHSA-2024:0455"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0455.json"
}
],
"title": "Red Hat Security Advisory: openssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:27+00:00",
"generator": {
"date": "2026-06-16T21:48:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0455",
"initial_release_date": "2024-01-25T09:21:45+00:00",
"revision_history": [
{
"date": "2024-01-25T09:21:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-25T09:21:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:9.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"product_id": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.4-5.30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-sk-dummy-debuginfo@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.4-5.30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.7p1-30.el9_2.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"product": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"product_id": "openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.7p1-30.el9_2.3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"product_id": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.4-5.30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-sk-dummy-debuginfo@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.4-5.30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"product": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"product_id": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.7p1-30.el9_2.3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"product_id": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.4-5.30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-sk-dummy-debuginfo@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.4-5.30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.7p1-30.el9_2.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"product": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"product_id": "openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.7p1-30.el9_2.3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"product_id": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.4-5.30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-sk-dummy-debuginfo@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.4-5.30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.7p1-30.el9_2.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.7p1-30.el9_2.3.s390x",
"product": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.s390x",
"product_id": "openssh-server-0:8.7p1-30.el9_2.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.7p1-30.el9_2.3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.7p1-30.el9_2.3.src",
"product": {
"name": "openssh-0:8.7p1-30.el9_2.3.src",
"product_id": "openssh-0:8.7p1-30.el9_2.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.7p1-30.el9_2.3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.src",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64"
},
"product_reference": "openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-25T09:21:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0455"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2023-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: potential command injection via shell metacharacters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability to execute OS commands is dependent on what quoting is present in the user-supplied ssh_config directive. However, it is generally the user\u0027s responsibility to validate arguments passed to SSH.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-51385"
},
{
"category": "external",
"summary": "RHBZ#2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-25T09:21:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0455"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"AppStream-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"AppStream-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.src",
"BaseOS-9.2.0.Z.EUS:openssh-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-askpass-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-clients-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-debugsource-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-keycat-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-server-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:openssh-sk-dummy-debuginfo-0:8.7p1-30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-0:0.10.4-5.30.el9_2.3.x86_64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.aarch64",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.ppc64le",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.s390x",
"BaseOS-9.2.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.4-5.30.el9_2.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: potential command injection via shell metacharacters"
}
]
}
RHSA-2024:0499
Vulnerability from csaf_redhat - Published: 2024-01-25 15:36 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: libssh security update
Severity
Moderate
Notes
Topic: An update for libssh is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for libssh is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0499",
"url": "https://access.redhat.com/errata/RHSA-2024:0499"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0499.json"
}
],
"title": "Red Hat Security Advisory: libssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:31+00:00",
"generator": {
"date": "2026-06-16T21:48:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0499",
"initial_release_date": "2024-01-25T15:36:48+00:00",
"revision_history": [
{
"date": "2024-01-25T15:36:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-25T15:36:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:9.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.10.4-9.el9_2.aarch64",
"product": {
"name": "libssh-devel-0:0.10.4-9.el9_2.aarch64",
"product_id": "libssh-devel-0:0.10.4-9.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.10.4-9.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"product": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"product_id": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.10.4-9.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"product": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"product_id": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.10.4-9.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.10.4-9.el9_2.aarch64",
"product": {
"name": "libssh-0:0.10.4-9.el9_2.aarch64",
"product_id": "libssh-0:0.10.4-9.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.10.4-9.el9_2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"product": {
"name": "libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"product_id": "libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.10.4-9.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"product": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"product_id": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.10.4-9.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"product": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"product_id": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.10.4-9.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.10.4-9.el9_2.ppc64le",
"product": {
"name": "libssh-0:0.10.4-9.el9_2.ppc64le",
"product_id": "libssh-0:0.10.4-9.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.10.4-9.el9_2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.10.4-9.el9_2.i686",
"product": {
"name": "libssh-devel-0:0.10.4-9.el9_2.i686",
"product_id": "libssh-devel-0:0.10.4-9.el9_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.10.4-9.el9_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.10.4-9.el9_2.i686",
"product": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.i686",
"product_id": "libssh-debugsource-0:0.10.4-9.el9_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.10.4-9.el9_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"product": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"product_id": "libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.10.4-9.el9_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.10.4-9.el9_2.i686",
"product": {
"name": "libssh-0:0.10.4-9.el9_2.i686",
"product_id": "libssh-0:0.10.4-9.el9_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.10.4-9.el9_2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.10.4-9.el9_2.x86_64",
"product": {
"name": "libssh-devel-0:0.10.4-9.el9_2.x86_64",
"product_id": "libssh-devel-0:0.10.4-9.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.10.4-9.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"product": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"product_id": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.10.4-9.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"product": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"product_id": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.10.4-9.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.10.4-9.el9_2.x86_64",
"product": {
"name": "libssh-0:0.10.4-9.el9_2.x86_64",
"product_id": "libssh-0:0.10.4-9.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.10.4-9.el9_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.10.4-9.el9_2.s390x",
"product": {
"name": "libssh-devel-0:0.10.4-9.el9_2.s390x",
"product_id": "libssh-devel-0:0.10.4-9.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.10.4-9.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"product": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"product_id": "libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.10.4-9.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"product": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"product_id": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.10.4-9.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.10.4-9.el9_2.s390x",
"product": {
"name": "libssh-0:0.10.4-9.el9_2.s390x",
"product_id": "libssh-0:0.10.4-9.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.10.4-9.el9_2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.10.4-9.el9_2.src",
"product": {
"name": "libssh-0:0.10.4-9.el9_2.src",
"product_id": "libssh-0:0.10.4-9.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.10.4-9.el9_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-config-0:0.10.4-9.el9_2.noarch",
"product": {
"name": "libssh-config-0:0.10.4-9.el9_2.noarch",
"product_id": "libssh-config-0:0.10.4-9.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-config@0.10.4-9.el9_2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.10.4-9.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch"
},
"product_reference": "libssh-config-0:0.10.4-9.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.src",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.10.4-9.el9_2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch"
},
"product_reference": "libssh-config-0:0.10.4-9.el9_2.noarch",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.10.4-9.el9_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64"
},
"product_reference": "libssh-devel-0:0.10.4-9.el9_2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-25T15:36:48+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing these updated packages, all running applications using libssh must be restarted for this update to take effect.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0499"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"AppStream-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.src",
"BaseOS-9.2.0.Z.EUS:libssh-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-config-0:0.10.4-9.el9_2.noarch",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debuginfo-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-debugsource-0:0.10.4-9.el9_2.x86_64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.aarch64",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.i686",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.ppc64le",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.s390x",
"BaseOS-9.2.0.Z.EUS:libssh-devel-0:0.10.4-9.el9_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
}
]
}
RHSA-2024:0538
Vulnerability from csaf_redhat - Published: 2024-01-29 11:50 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: libssh security update
Severity
Moderate
Notes
Topic: An update for libssh is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.
Security Fix(es):
* libssh: NULL pointer dereference during rekeying with algorithm guessing (CVE-2023-1667)
* libssh: authorization bypass in pki_verify_data_signature (CVE-2023-2283)
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service.
4.3 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The problem is caused by the return value `rc,` which is initialized to SSH_ERROR and later rewritten to save the return value of the function call `pki_key_check_hash_compatible.` The value of the variable is not changed between this point and the cryptographic verification. Therefore any error between them calls `goto error` returning SSH_OK.
4.8 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for libssh is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.\n\nSecurity Fix(es):\n\n* libssh: NULL pointer dereference during rekeying with algorithm guessing (CVE-2023-1667)\n\n* libssh: authorization bypass in pki_verify_data_signature (CVE-2023-2283)\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0538",
"url": "https://access.redhat.com/errata/RHSA-2024:0538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2182199",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2182199"
},
{
"category": "external",
"summary": "2189736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2189736"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0538.json"
}
],
"title": "Red Hat Security Advisory: libssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:32+00:00",
"generator": {
"date": "2026-06-16T21:48:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0538",
"initial_release_date": "2024-01-29T11:50:44+00:00",
"revision_history": [
{
"date": "2024-01-29T11:50:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-29T11:50:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.6::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-4.el8_6.src",
"product": {
"name": "libssh-0:0.9.6-4.el8_6.src",
"product_id": "libssh-0:0.9.6-4.el8_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-4.el8_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-4.el8_6.aarch64",
"product": {
"name": "libssh-0:0.9.6-4.el8_6.aarch64",
"product_id": "libssh-0:0.9.6-4.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-4.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"product": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"product_id": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-4.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"product": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"product_id": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-4.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-4.el8_6.aarch64",
"product": {
"name": "libssh-devel-0:0.9.6-4.el8_6.aarch64",
"product_id": "libssh-devel-0:0.9.6-4.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-4.el8_6?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-4.el8_6.ppc64le",
"product": {
"name": "libssh-0:0.9.6-4.el8_6.ppc64le",
"product_id": "libssh-0:0.9.6-4.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-4.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"product": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"product_id": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-4.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"product": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"product_id": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-4.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"product": {
"name": "libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"product_id": "libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-4.el8_6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-4.el8_6.i686",
"product": {
"name": "libssh-0:0.9.6-4.el8_6.i686",
"product_id": "libssh-0:0.9.6-4.el8_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-4.el8_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-4.el8_6.i686",
"product": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.i686",
"product_id": "libssh-debugsource-0:0.9.6-4.el8_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-4.el8_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"product": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"product_id": "libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-4.el8_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-4.el8_6.i686",
"product": {
"name": "libssh-devel-0:0.9.6-4.el8_6.i686",
"product_id": "libssh-devel-0:0.9.6-4.el8_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-4.el8_6?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-4.el8_6.x86_64",
"product": {
"name": "libssh-0:0.9.6-4.el8_6.x86_64",
"product_id": "libssh-0:0.9.6-4.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-4.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"product": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"product_id": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-4.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"product": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"product_id": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-4.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-4.el8_6.x86_64",
"product": {
"name": "libssh-devel-0:0.9.6-4.el8_6.x86_64",
"product_id": "libssh-devel-0:0.9.6-4.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-4.el8_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-4.el8_6.s390x",
"product": {
"name": "libssh-0:0.9.6-4.el8_6.s390x",
"product_id": "libssh-0:0.9.6-4.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-4.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"product": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"product_id": "libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-4.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"product": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"product_id": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-4.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-4.el8_6.s390x",
"product": {
"name": "libssh-devel-0:0.9.6-4.el8_6.s390x",
"product_id": "libssh-devel-0:0.9.6-4.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-4.el8_6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-config-0:0.9.6-4.el8_6.noarch",
"product": {
"name": "libssh-config-0:0.9.6-4.el8_6.noarch",
"product_id": "libssh-config-0:0.9.6-4.el8_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-config@0.9.6-4.el8_6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.9.6-4.el8_6.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch"
},
"product_reference": "libssh-config-0:0.9.6-4.el8_6.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.9.6-4.el8_6.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch"
},
"product_reference": "libssh-config-0:0.9.6-4.el8_6.noarch",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-4.el8_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
},
"product_reference": "libssh-devel-0:0.9.6-4.el8_6.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-1667",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2023-03-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2182199"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libssh: NULL pointer dereference during rekeying with algorithm guessing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-1667"
},
{
"category": "external",
"summary": "RHBZ#2182199",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2182199"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-1667",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1667"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-1667",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1667"
},
{
"category": "external",
"summary": "http://www.libssh.org/security/advisories/CVE-2023-1667.txt",
"url": "http://www.libssh.org/security/advisories/CVE-2023-1667.txt"
}
],
"release_date": "2023-04-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-29T11:50:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing these updated packages, all running applications using libssh must be restarted for this update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0538"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libssh: NULL pointer dereference during rekeying with algorithm guessing"
},
{
"cve": "CVE-2023-2283",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2023-04-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2189736"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The problem is caused by the return value `rc,` which is initialized to SSH_ERROR and later rewritten to save the return value of the function call `pki_key_check_hash_compatible.` The value of the variable is not changed between this point and the cryptographic verification. Therefore any error between them calls `goto error` returning SSH_OK.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libssh: authorization bypass in pki_verify_data_signature",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-2283"
},
{
"category": "external",
"summary": "RHBZ#2189736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2189736"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-2283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-2283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2283"
},
{
"category": "external",
"summary": "https://www.libssh.org/security/advisories/CVE-2023-2283.txt",
"url": "https://www.libssh.org/security/advisories/CVE-2023-2283.txt"
}
],
"release_date": "2023-05-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-29T11:50:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing these updated packages, all running applications using libssh must be restarted for this update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0538"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libssh: authorization bypass in pki_verify_data_signature"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-29T11:50:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing these updated packages, all running applications using libssh must be restarted for this update to take effect.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0538"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"AppStream-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"AppStream-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.src",
"BaseOS-8.6.0.Z.EUS:libssh-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-config-0:0.9.6-4.el8_6.noarch",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debuginfo-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-debugsource-0:0.9.6-4.el8_6.x86_64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.aarch64",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.i686",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.ppc64le",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.s390x",
"BaseOS-8.6.0.Z.EUS:libssh-devel-0:0.9.6-4.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
}
]
}
RHSA-2024:0594
Vulnerability from csaf_redhat - Published: 2024-01-30 14:13 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: openssh security update
Severity
Moderate
Notes
Topic: An update for openssh is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
* openssh: potential command injection via shell metacharacters (CVE-2023-51385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.
6.5 (Medium)
Affected products
Fixed
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssh is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\n* openssh: potential command injection via shell metacharacters (CVE-2023-51385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0594",
"url": "https://access.redhat.com/errata/RHSA-2024:0594"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0594.json"
}
],
"title": "Red Hat Security Advisory: openssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:32+00:00",
"generator": {
"date": "2026-06-16T21:48:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0594",
"initial_release_date": "2024-01-30T14:13:55+00:00",
"revision_history": [
{
"date": "2024-01-30T14:13:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-30T14:13:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"product_id": "openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_8.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_8.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"product_id": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_8.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"product_id": "openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_8.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_8.2.s390x",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.s390x",
"product_id": "openssh-server-0:8.0p1-19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_8.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_8.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_8.2.src",
"product": {
"name": "openssh-0:8.0p1-19.el8_8.2.src",
"product_id": "openssh-0:8.0p1-19.el8_8.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_8.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.src",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-30T14:13:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0594"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2023-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: potential command injection via shell metacharacters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability to execute OS commands is dependent on what quoting is present in the user-supplied ssh_config directive. However, it is generally the user\u0027s responsibility to validate arguments passed to SSH.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-51385"
},
{
"category": "external",
"summary": "RHBZ#2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-30T14:13:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0594"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"AppStream-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"AppStream-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.src",
"BaseOS-8.8.0.Z.EUS:openssh-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-askpass-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-cavs-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-clients-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-debugsource-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-keycat-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-ldap-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:openssh-server-debuginfo-0:8.0p1-19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-0:0.10.3-7.19.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.aarch64",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.s390x",
"BaseOS-8.8.0.Z.EUS:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: potential command injection via shell metacharacters"
}
]
}
RHSA-2024:0606
Vulnerability from csaf_redhat - Published: 2024-01-30 14:59 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: openssh security update
Severity
Moderate
Notes
Topic: An update for openssh is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
* openssh: potential command injection via shell metacharacters (CVE-2023-51385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.
6.5 (Medium)
Affected products
Fixed
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssh is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\n* openssh: potential command injection via shell metacharacters (CVE-2023-51385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0606",
"url": "https://access.redhat.com/errata/RHSA-2024:0606"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0606.json"
}
],
"title": "Red Hat Security Advisory: openssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:32+00:00",
"generator": {
"date": "2026-06-16T21:48:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0606",
"initial_release_date": "2024-01-30T14:59:23+00:00",
"revision_history": [
{
"date": "2024-01-30T14:59:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-30T14:59:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"product_id": "openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_9.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_9.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"product_id": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_9.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_9.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"product_id": "openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_9.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_9.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debugsource@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-askpass-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server-debuginfo@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"product": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"product_id": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo@0.10.3-7.19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-cavs@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-clients@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-keycat@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-ldap@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openssh-server-0:8.0p1-19.el8_9.2.s390x",
"product": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.s390x",
"product_id": "openssh-server-0:8.0p1-19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh-server@8.0p1-19.el8_9.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"product": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"product_id": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pam_ssh_agent_auth@0.10.3-7.19.el8_9.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-0:8.0p1-19.el8_9.2.src",
"product": {
"name": "openssh-0:8.0p1-19.el8_9.2.src",
"product_id": "openssh-0:8.0p1-19.el8_9.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@8.0p1-19.el8_9.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.src",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.src",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64"
},
"product_reference": "openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
},
"product_reference": "pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-30T14:59:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0606"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2023-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2255271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. In certain circumstances, a remote attacker may be able to execute arbitrary OS commands by using expansion tokens, such as %u or %h, with user names or host names that contain shell metacharacters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: potential command injection via shell metacharacters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ability to execute OS commands is dependent on what quoting is present in the user-supplied ssh_config directive. However, it is generally the user\u0027s responsibility to validate arguments passed to SSH.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-51385"
},
{
"category": "external",
"summary": "RHBZ#2255271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51385"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-30T14:59:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0606"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"AppStream-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"AppStream-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.src",
"BaseOS-8.9.0.Z.MAIN:openssh-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-askpass-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-cavs-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-clients-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-debugsource-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-keycat-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-ldap-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:openssh-server-debuginfo-0:8.0p1-19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-0:0.10.3-7.19.el8_9.2.x86_64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.aarch64",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.ppc64le",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.s390x",
"BaseOS-8.9.0.Z.MAIN:pam_ssh_agent_auth-debuginfo-0:0.10.3-7.19.el8_9.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: potential command injection via shell metacharacters"
}
]
}
RHSA-2024:0625
Vulnerability from csaf_redhat - Published: 2024-01-31 08:36 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: libssh security update
Severity
Moderate
Notes
Topic: An update for libssh is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for libssh is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0625",
"url": "https://access.redhat.com/errata/RHSA-2024:0625"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0625.json"
}
],
"title": "Red Hat Security Advisory: libssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:33+00:00",
"generator": {
"date": "2026-06-16T21:48:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0625",
"initial_release_date": "2024-01-31T08:36:02+00:00",
"revision_history": [
{
"date": "2024-01-31T08:36:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-31T08:36:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_8.aarch64",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_8.aarch64",
"product_id": "libssh-devel-0:0.9.6-13.el8_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_8.aarch64",
"product": {
"name": "libssh-0:0.9.6-13.el8_8.aarch64",
"product_id": "libssh-0:0.9.6-13.el8_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"product_id": "libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_8.ppc64le",
"product": {
"name": "libssh-0:0.9.6-13.el8_8.ppc64le",
"product_id": "libssh-0:0.9.6-13.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_8.i686",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_8.i686",
"product_id": "libssh-devel-0:0.9.6-13.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_8.i686",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.i686",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_8.i686",
"product": {
"name": "libssh-0:0.9.6-13.el8_8.i686",
"product_id": "libssh-0:0.9.6-13.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_8?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_8.x86_64",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_8.x86_64",
"product_id": "libssh-devel-0:0.9.6-13.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_8.x86_64",
"product": {
"name": "libssh-0:0.9.6-13.el8_8.x86_64",
"product_id": "libssh-0:0.9.6-13.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_8.s390x",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_8.s390x",
"product_id": "libssh-devel-0:0.9.6-13.el8_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_8.s390x",
"product": {
"name": "libssh-0:0.9.6-13.el8_8.s390x",
"product_id": "libssh-0:0.9.6-13.el8_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_8.src",
"product": {
"name": "libssh-0:0.9.6-13.el8_8.src",
"product_id": "libssh-0:0.9.6-13.el8_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-config-0:0.9.6-13.el8_8.noarch",
"product": {
"name": "libssh-config-0:0.9.6-13.el8_8.noarch",
"product_id": "libssh-config-0:0.9.6-13.el8_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-config@0.9.6-13.el8_8?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.9.6-13.el8_8.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch"
},
"product_reference": "libssh-config-0:0.9.6-13.el8_8.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.src",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.9.6-13.el8_8.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch"
},
"product_reference": "libssh-config-0:0.9.6-13.el8_8.noarch",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.aarch64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.s390x",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-31T08:36:02+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing these updated packages, all running applications using libssh must be restarted for this update to take effect.",
"product_ids": [
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0625"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"AppStream-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"AppStream-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.src",
"BaseOS-8.8.0.Z.EUS:libssh-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-config-0:0.9.6-13.el8_8.noarch",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debuginfo-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-debugsource-0:0.9.6-13.el8_8.x86_64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.aarch64",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.i686",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.ppc64le",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.s390x",
"BaseOS-8.8.0.Z.EUS:libssh-devel-0:0.9.6-13.el8_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
}
]
}
RHSA-2024:0628
Vulnerability from csaf_redhat - Published: 2024-01-31 08:48 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: libssh security update
Severity
Moderate
Notes
Topic: An update for libssh is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.
Security Fix(es):
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for libssh is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.\n\nSecurity Fix(es):\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0628",
"url": "https://access.redhat.com/errata/RHSA-2024:0628"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0628.json"
}
],
"title": "Red Hat Security Advisory: libssh security update",
"tracking": {
"current_release_date": "2026-06-16T21:48:34+00:00",
"generator": {
"date": "2026-06-16T21:48:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0628",
"initial_release_date": "2024-01-31T08:48:54+00:00",
"revision_history": [
{
"date": "2024-01-31T08:48:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-01-31T08:48:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_9.aarch64",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_9.aarch64",
"product_id": "libssh-devel-0:0.9.6-13.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_9.aarch64",
"product": {
"name": "libssh-0:0.9.6-13.el8_9.aarch64",
"product_id": "libssh-0:0.9.6-13.el8_9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_9?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"product_id": "libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_9.ppc64le",
"product": {
"name": "libssh-0:0.9.6-13.el8_9.ppc64le",
"product_id": "libssh-0:0.9.6-13.el8_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_9.i686",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_9.i686",
"product_id": "libssh-devel-0:0.9.6-13.el8_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_9.i686",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.i686",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_9.i686",
"product": {
"name": "libssh-0:0.9.6-13.el8_9.i686",
"product_id": "libssh-0:0.9.6-13.el8_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_9?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_9.x86_64",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_9.x86_64",
"product_id": "libssh-devel-0:0.9.6-13.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_9.x86_64",
"product": {
"name": "libssh-0:0.9.6-13.el8_9.x86_64",
"product_id": "libssh-0:0.9.6-13.el8_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-devel-0:0.9.6-13.el8_9.s390x",
"product": {
"name": "libssh-devel-0:0.9.6-13.el8_9.s390x",
"product_id": "libssh-devel-0:0.9.6-13.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-devel@0.9.6-13.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"product": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"product_id": "libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debugsource@0.9.6-13.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"product": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"product_id": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-debuginfo@0.9.6-13.el8_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_9.s390x",
"product": {
"name": "libssh-0:0.9.6-13.el8_9.s390x",
"product_id": "libssh-0:0.9.6-13.el8_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-0:0.9.6-13.el8_9.src",
"product": {
"name": "libssh-0:0.9.6-13.el8_9.src",
"product_id": "libssh-0:0.9.6-13.el8_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh@0.9.6-13.el8_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "libssh-config-0:0.9.6-13.el8_9.noarch",
"product": {
"name": "libssh-config-0:0.9.6-13.el8_9.noarch",
"product_id": "libssh-config-0:0.9.6-13.el8_9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libssh-config@0.9.6-13.el8_9?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.src",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.9.6-13.el8_9.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch"
},
"product_reference": "libssh-config-0:0.9.6-13.el8_9.noarch",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.src",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-config-0:0.9.6-13.el8_9.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch"
},
"product_reference": "libssh-config-0:0.9.6-13.el8_9.noarch",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.aarch64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.i686",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.s390x",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libssh-devel-0:0.9.6-13.el8_9.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64"
},
"product_reference": "libssh-devel-0:0.9.6-13.el8_9.x86_64",
"relates_to_product_reference": "BaseOS-8.9.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-01-31T08:48:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing these updated packages, all running applications using libssh must be restarted for this update to take effect.",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0628"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"AppStream-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"AppStream-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.src",
"BaseOS-8.9.0.Z.MAIN:libssh-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-config-0:0.9.6-13.el8_9.noarch",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debuginfo-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-debugsource-0:0.9.6-13.el8_9.x86_64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.aarch64",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.i686",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.ppc64le",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.s390x",
"BaseOS-8.9.0.Z.MAIN:libssh-devel-0:0.9.6-13.el8_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
}
]
}
RHSA-2024:0766
Vulnerability from csaf_redhat - Published: 2024-02-28 08:10 - Updated: 2026-06-21 13:28Summary
Red Hat Security Advisory: OpenShift Container Platform 4.15.0 security update
Severity
Critical
Notes
Topic: Red Hat OpenShift Container Platform release 4.15.0 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.15.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
Security Fix(es):
* opentelemetry: DoS vulnerability in otelhttp (CVE-2023-45142)
* opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound
cardinality metrics (CVE-2023-47108)
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP)
(CVE-2023-48795)
*golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s)
listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le | — |
Workaround
|
Threats
Impact
Important
A memory leak was found in the otelhttp handler of open-telemetry. This flaw allows a remote, unauthenticated attacker to exhaust the server's memory by sending many malicious requests, affecting the availability.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
A memory exhaustion flaw was found in the otelgrpc handler of open-telemetry. This flaw may allow a remote unauthenticated attacker to flood the peer address and port and exhaust the server's memory by sending multiple malicious requests, affecting the availability of the system.
7.5 (High)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
References
33 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.15.0 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container\nPlatform 4.15.\n\nRed Hat Product Security has rated this update as having a security impact\nof Critical. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nSecurity Fix(es):\n\n* opentelemetry: DoS vulnerability in otelhttp (CVE-2023-45142)\n* opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound\ncardinality metrics (CVE-2023-47108)\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP)\n(CVE-2023-48795)\n*golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) (CVE-2023-44487) \n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s)\nlisted in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0766",
"url": "https://access.redhat.com/errata/RHSA-2024:0766"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "2245180",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245180"
},
{
"category": "external",
"summary": "2251198",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251198"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0766.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.15.0 security update",
"tracking": {
"current_release_date": "2026-06-21T13:28:59+00:00",
"generator": {
"date": "2026-06-21T13:28:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0766",
"initial_release_date": "2024-02-28T08:10:56+00:00",
"revision_history": [
{
"date": "2024-02-28T08:10:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-02-28T08:10:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-21T13:28:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.15",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.15::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.15",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.15::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"product": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"product_id": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=v4.15.0-202402021938.p0.g205acc1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"product_id": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel8\u0026tag=v4.15.0-202402051038.p0.g5af4e87.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"product_id": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel8-operator\u0026tag=v4.15.0-202402051038.p0.ga05ecc6.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"product": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"product_id": "openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=v4.15.0-202402062138.p0.gd607bfc.assembly.stream.el9"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"product": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"product_id": "openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=v4.15.0-202402021938.p0.g205acc1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le",
"product": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le",
"product_id": "openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=v4.15.0-202402062138.p0.gd607bfc.assembly.stream.el9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"product": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"product_id": "openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=v4.15.0-202402021938.p0.g205acc1.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"product": {
"name": "openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"product_id": "openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-operator-bundle\u0026tag=v4.15.0.202401311148.p0.gf136eef.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"product": {
"name": "openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"product_id": "openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-operator-bundle\u0026tag=v4.15.0.202401290854.p0.g6d64145.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"product": {
"name": "openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"product_id": "openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-operator-bundle\u0026tag=v4.15.0.202401290854.p0.g7a76e06.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"product_id": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel8\u0026tag=v4.15.0-202402051038.p0.g5af4e87.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"product_id": "openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-operator-bundle\u0026tag=v4.15.0.202402051038.p0.ga05ecc6.assembly.stream-2"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"product_id": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel8-operator\u0026tag=v4.15.0-202402051038.p0.ga05ecc6.assembly.stream"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"product_id": "openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-operator-bundle\u0026tag=v4.15.0.202401261531.p0.g507210c.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-operator-bundle\u0026tag=v4.15.0.202401290854.p0.g751262e.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"product": {
"name": "openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"product_id": "openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-operator-bundle\u0026tag=v4.15.0.202401290854.p0.g80873d8.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"product": {
"name": "openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"product_id": "openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-metallb-operator-bundle\u0026tag=v4.15.0.202402010008.p0.g4817780.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"product": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"product_id": "openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=v4.15.0-202402062138.p0.gd607bfc.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"product": {
"name": "openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"product_id": "openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-operator-bundle\u0026tag=v4.15.0.202402062138.p0.gd607bfc.assembly.stream.el9-2"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"product": {
"name": "openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"product_id": "openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-operator-metadata\u0026tag=v4.15.0.202402062138.p0.gd607bfc.assembly.stream.el9-2"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"product_id": "openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-operator-bundle\u0026tag=v4.15.0.202401290854.p0.gfe43620.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"product_id": "openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-operator-metadata\u0026tag=v4.15.0.202401261531.p0.gb01b568.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"product_id": "openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-operator-bundle\u0026tag=v4.15.0.202401261531.p0.gb01b568.assembly.stream-4"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"product": {
"name": "openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"product_id": "openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-operator-bundle\u0026tag=v4.15.0.202401261531.p0.g00e0317.assembly.stream-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64"
},
"product_reference": "openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64"
},
"product_reference": "openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64"
},
"product_reference": "openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64"
},
"product_reference": "openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64"
},
"product_reference": "openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64"
},
"product_reference": "openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64"
},
"product_reference": "openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64"
},
"product_reference": "openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"relates_to_product_reference": "8Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64"
},
"product_reference": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64"
},
"product_reference": "openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le"
},
"product_reference": "openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64"
},
"product_reference": "openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64"
},
"product_reference": "openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
},
"product_reference": "openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
],
"known_not_affected": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-28T08:10:56+00:00",
"details": "See the following documentation, which will be updated shortly for this\nrelease, for important instructions on how to upgrade your cluster and\nfully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.15/release_notes/ocp-4-15-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0766"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-45142",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-10-19T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2245180"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak was found in the otelhttp handler of open-telemetry. This flaw allows a remote, unauthenticated attacker to exhaust the server\u0027s memory by sending many malicious requests, affecting the availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "opentelemetry: DoS vulnerability in otelhttp",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While no authentication is required, there are a significant number of non-default factors which prevent widespread exploitation of this flaw. For a service to be affected, all of the following must be true:\n* The go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp package must be in use\n* Configured a metrics pipeline which uses the otelhttp.NewHandler wrapper function\n* No filtering of unknown HTTP methods or user agents at a higher level (such as Content Delivery Network/Load Balancer/etc...)\n\nDue to the limited attack surface, Red Hat Product Security rates the impact as Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64"
],
"known_not_affected": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45142"
},
{
"category": "external",
"summary": "RHBZ#2245180",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245180"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45142"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45142",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45142"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-rcjv-mgp8-qvmr",
"url": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-rcjv-mgp8-qvmr"
}
],
"release_date": "2023-10-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-28T08:10:56+00:00",
"details": "See the following documentation, which will be updated shortly for this\nrelease, for important instructions on how to upgrade your cluster and\nfully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.15/release_notes/ocp-4-15-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0766"
},
{
"category": "workaround",
"details": "As a workaround to stop being affected otelhttp.WithFilter() can be used.\n\nFor convenience and safe usage of this library, it should by default mark with the label unknown non-standard HTTP methods and User agents to show that such requests were made but do not increase cardinality. In case someone wants to stay with the current behavior, library API should allow to enable it.\n\nThe other possibility is to disable HTTP metrics instrumentation by passing otelhttp.WithMeterProvider option with noop.NewMeterProvider.",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "opentelemetry: DoS vulnerability in otelhttp"
},
{
"cve": "CVE-2023-47108",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-11-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2251198"
}
],
"notes": [
{
"category": "description",
"text": "A memory exhaustion flaw was found in the otelgrpc handler of open-telemetry. This flaw may allow a remote unauthenticated attacker to flood the peer address and port and exhaust the server\u0027s memory by sending multiple malicious requests, affecting the availability of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While no authentication is required, there are a significant number of non-default factors that prevent widespread exploitation of this issue. To affect a service, all of the following must be true:\n- The go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc package must be in use\n- Configured a metrics pipeline that uses the UnaryServerInterceptor wrapper function\n- No filtering of unknown HTTP methods or user agents at a higher level, such as Content Delivery Network\n\nDue to the limited attack surface, Red Hat Product Security rates the impact of this flaw as Moderate.\n\ncluster-network-operator-container in Openshift Container Platform 4 is rated as low and Won\u0027t Fix as the stats are behind an RBAC proxy and isn\u0027t available to unauthenticated users.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64"
],
"known_not_affected": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-47108"
},
{
"category": "external",
"summary": "RHBZ#2251198",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251198"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-47108",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47108"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-47108",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47108"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-8pgv-569h-w5rw",
"url": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-8pgv-569h-w5rw"
}
],
"release_date": "2023-11-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-28T08:10:56+00:00",
"details": "See the following documentation, which will be updated shortly for this\nrelease, for important instructions on how to upgrade your cluster and\nfully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.15/release_notes/ocp-4-15-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0766"
},
{
"category": "workaround",
"details": "As a workaround, use a view removing the attributes. Another possibility is to disable grpc metrics instrumentation by passing otelgrpc.WithMeterProvider option with noop.NewMeterProvider.",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64"
],
"known_not_affected": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-28T08:10:56+00:00",
"details": "See the following documentation, which will be updated shortly for this\nrelease, for important instructions on how to upgrade your cluster and\nfully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.15/release_notes/ocp-4-15-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0766"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.15:openshift4/ingress-node-firewall-operator-bundle@sha256:ad4c55b7cc6cdc8a9ecff84e839b0b475de0b50c20db7926964d069ce8a7ceed_amd64",
"8Base-RHOSE-4.15:openshift4/kubernetes-nmstate-operator-bundle@sha256:311a354ab15895b2ba12b17046aedcc4cd95f384969a74d6decf45ee36875fb1_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:52f97b60aace7aaaa22b5a790c56261dd2ab2d9396b80499ed3985906167f80f_arm64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-container-rhel8@sha256:76b89600c2cbe4f15de39caa3343fd7156a9f0422f46e768c3b2c5ce01919497_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-operator-bundle@sha256:b7dcc39a068b4b706b36307b255b3997001bd93f403449496dee27edd19fb4ab_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:0cd3b44d1d6ecb9ab893adae94a3da6a4843882e65b4e1da860a542fe47ed33c_amd64",
"8Base-RHOSE-4.15:openshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:f7d7c1376a89e246f09e9d8beb4b65c14d12dd072638b226b780f4abe1f45d99_arm64",
"8Base-RHOSE-4.15:openshift4/ose-cluster-nfd-operator-bundle@sha256:f088af61fabb1c5dd221eb5815a8a0f5dda36805356a642077a0f37efb5cc272_amd64",
"8Base-RHOSE-4.15:openshift4/ose-clusterresourceoverride-operator-bundle@sha256:94e5af0c9d1caea39256063cdbc089bac09d743a9c0b14d403643c5a55af3d9e_amd64",
"8Base-RHOSE-4.15:openshift4/ose-gcp-filestore-csi-driver-operator-bundle@sha256:ca0381b535092e1b260a5f4b37b0401eb24f704ed1f33f38ab43d69ed6784e0a_amd64",
"8Base-RHOSE-4.15:openshift4/ose-local-storage-operator-bundle@sha256:b73ac17534596ae64be84320ea57ff61ff0c2603474f08dd0053cafbf0b0e929_amd64",
"8Base-RHOSE-4.15:openshift4/ose-metallb-operator-bundle@sha256:91d9f032a45c619dfc3ab1110b331a80b746c5547096a9e8f26e1ab0f0dce6ac_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-bundle@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-ptp-operator-metadata@sha256:b892b627d6bb32c2e550392b655c816ec909e1229d3cc8818a9334ea7e8d69cd_amd64",
"8Base-RHOSE-4.15:openshift4/ose-secrets-store-csi-driver-operator-bundle@sha256:ff57e48dbd3e1ea53866839482720c83ec1004ee550546021e02ffeb6ddc03a5_amd64",
"8Base-RHOSE-4.15:openshift4/ose-sriov-network-operator-bundle@sha256:805228e933414ee055fb3d733c6f270f29ac259b36288a8b3c6181f4a94329cc_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-bundle@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"8Base-RHOSE-4.15:openshift4/ose-vertical-pod-autoscaler-operator-metadata@sha256:451dcb081b95927c895f69b784cc4d29c2c0075368acc38c99fa09234d191ad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:3905aee5836e2ce3b9572f5946731329b9b3a31a87e2dd61598ea93053c67918_arm64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:71813d71dbc4223cbf323ac4d9e9416f71991585b441f34e5e63084eca0dfad0_amd64",
"9Base-RHOSE-4.15:openshift4/ose-cloud-event-proxy-rhel9@sha256:e2f61b3ff01d7c47ad76cd4f46e07b2ef96d4a5f2f74bc53bc19dca9bfc645b9_ppc64le",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:23c0816967bb826b4885b5104b584634a76b81d10d1a623f51605023aa8c7fa6_amd64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:7b5d1d62057e450200fb37baf3d4f4111e7738bc3029c735e6de5b1b0710fed8_arm64",
"9Base-RHOSE-4.15:openshift4/ose-ptp-rhel9-operator@sha256:af40b6ea728a0ab474a53509ba4d944133d1f70710ce99816658ce30ada3f88c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
}
]
}
RHSA-2024:0789
Vulnerability from csaf_redhat - Published: 2024-02-12 16:02 - Updated: 2026-06-16 21:48Summary
Red Hat Security Advisory: Red Hat Build of Apache Camel 4.0 for Quarkus 3.2 release (RHBQ 3.2.10.Final)
Severity
Important
Notes
Topic: An update for Red Hat Build of Apache Camel 4.0 for Quarkus 3.2 is now available (updates to RHBQ 3.2.10.Final).
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: An update for Red Hat Build of Apache Camel 4.0 for Quarkus 3.2 is now available (updates to RHBQ 3.2.10.Final). The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products.
Security Fix(es):
* parsson: Denial of Service due to large number parsing (CVE-2023-4043)
* santuario: Private Key disclosure in debug-log output (CVE-2023-44483)
* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)
* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Eclipse Parsson library when processing untrusted source content. This issue may cause a Denial of Service (DoS) due to built-in support for parsing numbers with a large scale, and some cases where processing a large number may take much more time than expected.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)
Red Hat / Red Hat Integration
|
cpe:/a:redhat:camel_quarkus:3
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
All versions of Apache Santuario - XML Security for Java prior to 2.2.6, 2.3.4, and 3.0.3, when using the JSR 105 API, are vulnerable to an issue where a private key may be disclosed in log files when generating an XML Signature and logging with debug level is enabled. Users are recommended to upgrade to version 2.2.6, 2.3.4, or 3.0.3, which fixes this issue.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)
Red Hat / Red Hat Integration
|
cpe:/a:redhat:camel_quarkus:3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)
Red Hat / Red Hat Integration
|
cpe:/a:redhat:camel_quarkus:3
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A stack overflow vulnerability was found in the Criteria.parse() method in json-path. This issue occurs due to an uncontrolled recursion caused by specially crafted input, leading to a stack overflow. This vulnerability has the potential to trigger a crash, resulting in a denial of service.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)
Red Hat / Red Hat Integration
|
cpe:/a:redhat:camel_quarkus:3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
29 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Build of Apache Camel 4.0 for Quarkus 3.2 is now available (updates to RHBQ 3.2.10.Final).\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "An update for Red Hat Build of Apache Camel 4.0 for Quarkus 3.2 is now available (updates to RHBQ 3.2.10.Final). The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products.\n\nSecurity Fix(es):\n\n* parsson: Denial of Service due to large number parsing (CVE-2023-4043)\n\n* santuario: Private Key disclosure in debug-log output (CVE-2023-44483)\n\n* ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795)\n\n* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:0789",
"url": "https://access.redhat.com/errata/RHSA-2024:0789"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=rhboac\u0026downloadType=distributions\u0026version=4.0.x",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=rhboac\u0026downloadType=distributions\u0026version=4.0.x"
},
{
"category": "external",
"summary": "2246070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246070"
},
{
"category": "external",
"summary": "2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "2254594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254594"
},
{
"category": "external",
"summary": "2256063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256063"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0789.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.0 for Quarkus 3.2 release (RHBQ 3.2.10.Final)",
"tracking": {
"current_release_date": "2026-06-16T21:48:39+00:00",
"generator": {
"date": "2026-06-16T21:48:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.0.0"
}
},
"id": "RHSA-2024:0789",
"initial_release_date": "2024-02-12T16:02:02+00:00",
"revision_history": [
{
"date": "2024-02-12T16:02:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-02-12T16:02:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-16T21:48:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)",
"product": {
"name": "RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)",
"product_id": "RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:camel_quarkus:3"
}
}
}
],
"category": "product_family",
"name": "Red Hat Integration"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-4043",
"cwe": {
"id": "CWE-834",
"name": "Excessive Iteration"
},
"discovery_date": "2023-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254594"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Eclipse Parsson library when processing untrusted source content. This issue may cause a Denial of Service (DoS) due to built-in support for parsing numbers with a large scale, and some cases where processing a large number may take much more time than expected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "parsson: Denial of Service due to large number parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this as an important impact since one needs to process untrusted and if there is no sanitization a Denial of Service (DoS) may happen.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-4043"
},
{
"category": "external",
"summary": "RHBZ#2254594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-4043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4043"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-4043",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4043"
}
],
"release_date": "2023-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-12T16:02:02+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\nThe References section of this erratum contains a download link (you must log in to download the update).",
"product_ids": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0789"
},
{
"category": "workaround",
"details": "Avoid processing untrusted sources content in order to minimize the chance for Denial of Service attack.",
"product_ids": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "parsson: Denial of Service due to large number parsing"
},
{
"cve": "CVE-2023-44483",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2023-10-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2246070"
}
],
"notes": [
{
"category": "description",
"text": "All versions of Apache Santuario - XML Security for Java prior to 2.2.6, 2.3.4, and 3.0.3, when using the JSR 105 API, are vulnerable to an issue where a private key may be disclosed in log files when generating an XML Signature and logging with debug level is enabled.\u00a0Users are recommended to upgrade to version 2.2.6, 2.3.4, or 3.0.3, which fixes this issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "santuario: Private Key disclosure in debug-log output",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44483"
},
{
"category": "external",
"summary": "RHBZ#2246070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246070"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44483"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44483",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44483"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2023/10/20/5",
"url": "http://www.openwall.com/lists/oss-security/2023/10/20/5"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/vmqbp9mfxtrf0kmbnnmbn3h9j6dr9q55",
"url": "https://lists.apache.org/thread/vmqbp9mfxtrf0kmbnnmbn3h9j6dr9q55"
}
],
"release_date": "2023-10-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-12T16:02:02+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\nThe References section of this erratum contains a download link (you must log in to download the update).",
"product_ids": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0789"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "santuario: Private Key disclosure in debug-log output"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"discovery_date": "2023-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2254210"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure in OpenSSH 9.5 against keystroke timing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is classified as moderate because the attack requires an active Man-in-the-Middle (MITM) who can intercept and modify the connection\u0027s traffic at the TCP/IP layer.\n\nAlthough the attack is cryptographically innovative, its security impact is fortunately quite limited. It only allows the deletion of consecutive messages, and deleting most messages at this protocol stage prevents user authentication from proceeding, leading to a stalled connection.\n\nThe most significant identified impact is that it enables a MITM to delete the SSH2_MSG_EXT_INFO message sent before authentication begins. This allows the attacker to disable a subset of keystroke timing obfuscation features. However, there is no other observable impact on session secrecy or session integrity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-48795"
},
{
"category": "external",
"summary": "RHBZ#2254210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48795"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/7071748",
"url": "https://access.redhat.com/solutions/7071748"
},
{
"category": "external",
"summary": "https://terrapin-attack.com/",
"url": "https://terrapin-attack.com/"
}
],
"release_date": "2023-12-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-12T16:02:02+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\nThe References section of this erratum contains a download link (you must log in to download the update).",
"product_ids": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0789"
},
{
"category": "workaround",
"details": "Update to the last version and check that client and server provide kex pseudo-algorithms indicating usage of the updated version of the protocol which is protected from the attack. If \"kex-strict-c-v00@openssh.com\" is provided by clients and \"kex-strict-s-v00@openssh.com\" is in the server\u0027s reply, no other steps are necessary.\n\nDisabling ciphers if necessary:\n\nIf \"kex-strict-c-v00@openssh.com\" is not provided by clients or \"kex-strict-s-v00@openssh.com\" is absent in the server\u0027s reply, you can disable the following ciphers and HMACs as a workaround on RHEL-8 and RHEL-9:\n\n1. chacha20-poly1305@openssh.com\n2. hmac-sha2-512-etm@openssh.com\n3. hmac-sha2-256-etm@openssh.com\n4. hmac-sha1-etm@openssh.com\n5. hmac-md5-etm@openssh.com\n\nTo do that through crypto-policies, one can apply a subpolicy with the following content:\n```\ncipher@SSH = -CHACHA20-POLY1305\nssh_etm = 0\n```\ne.g., by putting these lines into `/etc/crypto-policies/policies/modules/CVE-2023-48795.pmod`, applying the resulting subpolicy with `update-crypto-policies --set $(update-crypto-policies --show):CVE-2023-48795` and restarting openssh server.\n\nOne can verify that the changes are in effect by ensuring the ciphers listed above are missing from both `/etc/crypto-policies/back-ends/openssh.config` and `/etc/crypto-policies/back-ends/opensshserver.config`.\n\nFor more details on using crypto-policies, please refer to https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening\n\nNote that this procedure does limit the interoperability of the host and is only suggested as a temporary mitigation until the issue is fully resolved with an update.\n\nFor RHEL-7: \nWe can recommend to use strict MACs and Ciphers on RHEL7 in both files /etc/ssh/ssh_config and /etc/ssh/sshd_config.\n\nBelow strict set of Ciphers and MACs can be used as mitigation for RHEL 7.\n\n```\nCiphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\nMACs umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512\n```\n\n- For Openshift Container Platform 4:\nPlease refer the KCS[1] document for verifying the fix in RHCOS.\n\n[1] https://access.redhat.com/solutions/7071748",
"product_ids": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ssh: Prefix truncation attack on Binary Packet Protocol (BPP)"
},
{
"cve": "CVE-2023-51074",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2023-12-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2256063"
}
],
"notes": [
{
"category": "description",
"text": "A stack overflow vulnerability was found in the Criteria.parse() method in json-path. This issue occurs due to an uncontrolled recursion caused by specially crafted input, leading to a stack overflow. This vulnerability has the potential to trigger a crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "json-path: stack-based buffer overflow in Criteria.parse method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this at maximum of a Moderate impact. When interacting with a server to explore this possible vulnerability, the attacker would be the only one seeing a HTTP 500 error and no other user (or the server entirely) would be vulnerable in a real application scenario with multi-threads.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-51074"
},
{
"category": "external",
"summary": "RHBZ#2256063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-51074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51074"
},
{
"category": "external",
"summary": "https://github.com/json-path/JsonPath/issues/973",
"url": "https://github.com/json-path/JsonPath/issues/973"
}
],
"release_date": "2023-12-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-02-12T16:02:02+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\nThe References section of this erratum contains a download link (you must log in to download the update).",
"product_ids": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:0789"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "json-path: stack-based buffer overflow in Criteria.parse method"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…