openssh-8.0p1-26.el8_10
エラータID: AXSA:2025-10918:05
リリース日:
2025/10/03 Friday - 10:59
題名:
openssh-8.0p1-26.el8_10
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- OpenSSH には、VerifyHostKeyDNS オプションが有効になっている
などの特定の状況下において、ホストキーを検証する際のエラーコードの
処理方法に問題があるため、リモートの攻撃者により、クライアント側の
メモリを枯渇させることを介して、中間者攻撃を可能とする脆弱性が
存在します。(CVE-2025-26465)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2025-26465
A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.
A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.
追加情報:
N/A
ダウンロード:
SRPMS
- openssh-8.0p1-26.el8_10.src.rpm
MD5: 8de60cc3395da3b1925a9443bc26bf2b
SHA-256: a8191acd5246ee2d34987ca782d4464c2d59a5cef7e52e89b54aa8c9a72ce648
Size: 2.89 MB
Asianux Server 8 for x86_64
- openssh-8.0p1-26.el8_10.x86_64.rpm
MD5: 6d3de80ece28151fb449422da26c983b
SHA-256: ca0bb75c24e808795c4713d5809630b6aa3d6a0b3e9799cb200ab705d501c8aa
Size: 524.86 kB - openssh-askpass-8.0p1-26.el8_10.x86_64.rpm
MD5: 39c261f2039f26bc843eba8d1118e934
SHA-256: 3c93e6545d04b24768ab42ef16be94e128e78ef317f94699c90cb1ad8e103439
Size: 94.66 kB - openssh-cavs-8.0p1-26.el8_10.x86_64.rpm
MD5: c9964fa5795bac56ee9db26f2f305914
SHA-256: 049dfd08e4ff39d2efd6ab5febc8f5a59a67bfacc2a97c4bcb3fbbbaaa51f00a
Size: 233.14 kB - openssh-clients-8.0p1-26.el8_10.x86_64.rpm
MD5: 3400ad3858ca08314c1ffc72b20554ad
SHA-256: 8297e1a3ee4f8133d34f5c334cc9ae3a807eb7911bb29c0adcabd9e2006e4c40
Size: 645.57 kB - openssh-keycat-8.0p1-26.el8_10.x86_64.rpm
MD5: eab2575ff85f36103b979290297c57db
SHA-256: bafef22e8b0cb26dbbf7efb55688934bc21e5cafc4b811ecd5f1d4395b458e05
Size: 117.94 kB - openssh-ldap-8.0p1-26.el8_10.x86_64.rpm
MD5: c69ef449cc4c63a12ae8ad703e2ed3cb
SHA-256: 7abc9d7b6635e039967fdc853d0baaa20ab08f579f8196c8df2683c56b413a1d
Size: 133.81 kB - openssh-server-8.0p1-26.el8_10.x86_64.rpm
MD5: 86891820c06f9a0593e2e0e7caec3a7b
SHA-256: 2241eb2d7ffe68524276ee2f275f42560c607774dee2504cc940041c0d9d4ad4
Size: 494.16 kB - pam_ssh_agent_auth-0.10.3-7.26.el8_10.x86_64.rpm
MD5: 6a061f70f3b2c2836bafc9bee544f637
SHA-256: dcd77679e77379ad017391d699f91dd5e145cc33cbdede9d3abf2d9320f6f125
Size: 209.51 kB
English