openssh-8.0p1-13.el8

エラータID: AXSA:2022-3394:01

Release date: 
Tuesday, July 5, 2022 - 03:00
Subject: 
openssh-8.0p1-13.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.

Security Fix(es):

* openssh: privilege escalation when AuthorizedKeysCommand or AuthorizedPrincipalsCommand are configured (CVE-2021-41617)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Asianux Server 8.6 Release Notes linked from the References section.

CVE-2021-41617
sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. openssh-8.0p1-13.el8.src.rpm
    MD5: 79223da14590cd37ad3378fd8f8cd7e4
    SHA-256: 891b476d38cbd8d885de9e2f61aa113d776df0fc3b9b45a838e436d1ceb4a88a
    Size: 2.87 MB

Asianux Server 8 for x86_64
  1. openssh-8.0p1-13.el8.x86_64.rpm
    MD5: b76c0328da25173c26cc3d99874e9414
    SHA-256: ff7b52aec88b872c4f0eb202fb6b847da22f10a4454d23f51dc98778eed8aef1
    Size: 521.16 kB
  2. openssh-askpass-8.0p1-13.el8.x86_64.rpm
    MD5: 1cbbebf70ae41b857e701959b9f33ac8
    SHA-256: 6d932df6299963ca456064a9d04aa7f81a52becd710b67c7caadd183230be374
    Size: 92.09 kB
  3. openssh-cavs-8.0p1-13.el8.x86_64.rpm
    MD5: 1a2080965eb5fb317bdb57959c3556b6
    SHA-256: 286d73efb4434614eba528aa9b8b0e582fc6c3901d79283fb377a0695c42dc1e
    Size: 230.05 kB
  4. openssh-clients-8.0p1-13.el8.x86_64.rpm
    MD5: ea5f3095a13c368d6c0eb1e94b90e199
    SHA-256: 16c5ef28bf4d040829098fc0e3e67c06e210208ea10bcea5302784f64502babf
    Size: 667.12 kB
  5. openssh-keycat-8.0p1-13.el8.x86_64.rpm
    MD5: 95ecac88925ed2337936b1df4ed1a054
    SHA-256: 329b85daaa9da668498909f8270b34febda798ec074af3797327ef92d36cec89
    Size: 115.34 kB
  6. openssh-ldap-8.0p1-13.el8.x86_64.rpm
    MD5: 2994dd8cd8e268ae99898e4962e9280d
    SHA-256: 2b6a8a204ee8100e59eb62acf747c903662d372944fad7d19ec6e038aff5e86d
    Size: 131.25 kB
  7. openssh-server-8.0p1-13.el8.x86_64.rpm
    MD5: 9a2d3aa76730ae0a80639bd9880036fa
    SHA-256: e77ba4a57407b81cc7d0a870a631b7f7387e53746ffa801a0ba1583f6fe3db35
    Size: 489.88 kB
  8. pam_ssh_agent_auth-0.10.3-7.13.el8.x86_64.rpm
    MD5: 64ab1ae5a99d1fecaeaeaa015299b401
    SHA-256: 4c55395841011232ca76e5151dc677505b71d7214b033063db992ba5d9d66549
    Size: 206.85 kB