openssh bug fix update
| Advisory: | RHBA-2005:046-08 |
|---|---|
| Type: | Bug Fix Advisory |
| Severity: | N/A |
| Issued on: | 2005-06-09 |
| Last updated on: | 2005-06-09 |
| Affected Products: | Red Hat Desktop (v. 4) Red Hat Enterprise Linux AS (v. 4) Red Hat Enterprise Linux ES (v. 4) Red Hat Enterprise Linux WS (v. 4) |
Details
Updated openssh packages that fix a bug in sshd and change a default type
of X11 forwarding are now available for Red Hat Enterprise Linux 4.
OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. This
package includes the core files necessary for both the OpenSSH client and
server.
When authenticating incoming connections, sshd sets up a timeout using the
SIGALRM signal to limit the amount of time which an unauthenticated user
can keep a connection open. If the timeout was reached while sshd was
logging a message via syslog, sshd would deadlock.
The openssh-3.9p1 package adds X11 untrusted forwarding, which disables
access to many functionalities of the forwarded X11 display. This should
improve security, although few X11 client applications are fully functional
with this extension. This update sets the default type to trusted X11
forwarding.
All users of openssh should upgrade to these updated packages, which
resolve these issues.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
Updated packages
| Red Hat Desktop (v. 4) | |
| SRPMS: | |
| openssh-3.9p1-8.RHEL4.4.src.rpm File outdated by: RHEA-2010:0511 |
MD5: 2074fdd1f2ba145cd582c419ef0bb3e8 |
| IA-32: | |
| openssh-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: a5e12b77b4adc5322ee8aa1c9fff05d1 |
| openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 020ff10ceeb91b68ce86989adba9f046 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 46941af803a6c38355380539932ae79a |
| openssh-clients-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 831263ae823c8dced2e658a0bdf97da6 |
| openssh-server-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: c85b726d7a153d70df21ff16ca91299e |
| x86_64: | |
| openssh-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 8846c45e05937935d128ac2d24062cce |
| openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 92372560d197dc38278929cb1689257b |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 59ca04f1ea31af33c87e2d35b00a4831 |
| openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 7d161a8875f00dbe57ed58e7e1654d7d |
| openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: e6c208de12f2397afa6ae515f93c6c0c |
| Red Hat Enterprise Linux AS (v. 4) | |
| SRPMS: | |
| openssh-3.9p1-8.RHEL4.4.src.rpm File outdated by: RHEA-2010:0511 |
MD5: 2074fdd1f2ba145cd582c419ef0bb3e8 |
| IA-32: | |
| openssh-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: a5e12b77b4adc5322ee8aa1c9fff05d1 |
| openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 020ff10ceeb91b68ce86989adba9f046 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 46941af803a6c38355380539932ae79a |
| openssh-clients-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 831263ae823c8dced2e658a0bdf97da6 |
| openssh-server-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: c85b726d7a153d70df21ff16ca91299e |
| IA-64: | |
| openssh-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: fb4d25817cb6fe4c5e3d38c5d972b3fa |
| openssh-askpass-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: 08910b3c2304cb77865efb160c43b8d9 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: 6635a4bbe7ace70e43724f82f3092874 |
| openssh-clients-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: a05def0c3519b6d23ea84eebcd696438 |
| openssh-server-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: cb703b982611e5f372f714747e56459c |
| PPC: | |
| openssh-3.9p1-8.RHEL4.4.ppc.rpm File outdated by: RHEA-2010:0511 |
MD5: 47cdb6858b9484b339e080e89b80566c |
| openssh-askpass-3.9p1-8.RHEL4.4.ppc.rpm File outdated by: RHEA-2010:0511 |
MD5: b21de3fd1d8ee12efc54b4f9fcaf9ef0 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.ppc.rpm File outdated by: RHEA-2010:0511 |
MD5: 42cd1f7ae456b93b8b8539c4bcc4f1a9 |
| openssh-clients-3.9p1-8.RHEL4.4.ppc.rpm File outdated by: RHEA-2010:0511 |
MD5: 849d00b6c7424615f2d838db90f3a275 |
| openssh-server-3.9p1-8.RHEL4.4.ppc.rpm File outdated by: RHEA-2010:0511 |
MD5: a7dee635dcd01cc2560cae897e831a24 |
| s390: | |
| openssh-3.9p1-8.RHEL4.4.s390.rpm File outdated by: RHEA-2010:0511 |
MD5: dafa99a7265db6ed3f58d48ae53fdf7b |
| openssh-askpass-3.9p1-8.RHEL4.4.s390.rpm File outdated by: RHEA-2010:0511 |
MD5: d6dc2272a887c9dd01197339066a51db |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.s390.rpm File outdated by: RHEA-2010:0511 |
MD5: fbd9ae66e747955154f8ba1feab07451 |
| openssh-clients-3.9p1-8.RHEL4.4.s390.rpm File outdated by: RHEA-2010:0511 |
MD5: c1dc140bf6a9101e6d1d7648e007948c |
| openssh-server-3.9p1-8.RHEL4.4.s390.rpm File outdated by: RHEA-2010:0511 |
MD5: fd43151df8287cfc3244df112dffa84f |
| s390x: | |
| openssh-3.9p1-8.RHEL4.4.s390x.rpm File outdated by: RHEA-2010:0511 |
MD5: 8d52e3889de2e43e72c602fbb8712554 |
| openssh-askpass-3.9p1-8.RHEL4.4.s390x.rpm File outdated by: RHEA-2010:0511 |
MD5: 121db411c30800ad6c02e251b37f5287 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.s390x.rpm File outdated by: RHEA-2010:0511 |
MD5: 1e8e0e93a948f6c05018acd2529d9c25 |
| openssh-clients-3.9p1-8.RHEL4.4.s390x.rpm File outdated by: RHEA-2010:0511 |
MD5: 759996930490d1f07fdbb3ff066260aa |
| openssh-server-3.9p1-8.RHEL4.4.s390x.rpm File outdated by: RHEA-2010:0511 |
MD5: 0d49965225caa470993ac6f99f66d7e9 |
| x86_64: | |
| openssh-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 8846c45e05937935d128ac2d24062cce |
| openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 92372560d197dc38278929cb1689257b |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 59ca04f1ea31af33c87e2d35b00a4831 |
| openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 7d161a8875f00dbe57ed58e7e1654d7d |
| openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: e6c208de12f2397afa6ae515f93c6c0c |
| Red Hat Enterprise Linux ES (v. 4) | |
| SRPMS: | |
| openssh-3.9p1-8.RHEL4.4.src.rpm File outdated by: RHEA-2010:0511 |
MD5: 2074fdd1f2ba145cd582c419ef0bb3e8 |
| IA-32: | |
| openssh-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: a5e12b77b4adc5322ee8aa1c9fff05d1 |
| openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 020ff10ceeb91b68ce86989adba9f046 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 46941af803a6c38355380539932ae79a |
| openssh-clients-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 831263ae823c8dced2e658a0bdf97da6 |
| openssh-server-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: c85b726d7a153d70df21ff16ca91299e |
| IA-64: | |
| openssh-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: fb4d25817cb6fe4c5e3d38c5d972b3fa |
| openssh-askpass-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: 08910b3c2304cb77865efb160c43b8d9 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: 6635a4bbe7ace70e43724f82f3092874 |
| openssh-clients-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: a05def0c3519b6d23ea84eebcd696438 |
| openssh-server-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: cb703b982611e5f372f714747e56459c |
| x86_64: | |
| openssh-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 8846c45e05937935d128ac2d24062cce |
| openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 92372560d197dc38278929cb1689257b |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 59ca04f1ea31af33c87e2d35b00a4831 |
| openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 7d161a8875f00dbe57ed58e7e1654d7d |
| openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: e6c208de12f2397afa6ae515f93c6c0c |
| Red Hat Enterprise Linux WS (v. 4) | |
| SRPMS: | |
| openssh-3.9p1-8.RHEL4.4.src.rpm File outdated by: RHEA-2010:0511 |
MD5: 2074fdd1f2ba145cd582c419ef0bb3e8 |
| IA-32: | |
| openssh-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: a5e12b77b4adc5322ee8aa1c9fff05d1 |
| openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 020ff10ceeb91b68ce86989adba9f046 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 46941af803a6c38355380539932ae79a |
| openssh-clients-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: 831263ae823c8dced2e658a0bdf97da6 |
| openssh-server-3.9p1-8.RHEL4.4.i386.rpm File outdated by: RHEA-2010:0511 |
MD5: c85b726d7a153d70df21ff16ca91299e |
| IA-64: | |
| openssh-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: fb4d25817cb6fe4c5e3d38c5d972b3fa |
| openssh-askpass-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: 08910b3c2304cb77865efb160c43b8d9 |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: 6635a4bbe7ace70e43724f82f3092874 |
| openssh-clients-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: a05def0c3519b6d23ea84eebcd696438 |
| openssh-server-3.9p1-8.RHEL4.4.ia64.rpm File outdated by: RHEA-2010:0511 |
MD5: cb703b982611e5f372f714747e56459c |
| x86_64: | |
| openssh-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 8846c45e05937935d128ac2d24062cce |
| openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 92372560d197dc38278929cb1689257b |
| openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 59ca04f1ea31af33c87e2d35b00a4831 |
| openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: 7d161a8875f00dbe57ed58e7e1654d7d |
| openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm File outdated by: RHEA-2010:0511 |
MD5: e6c208de12f2397afa6ae515f93c6c0c |
| (The unlinked packages above are only available from the Red Hat Network) | |
Bugs fixed (see bugzilla for more information)
150262 - SSH client should use trusted X forwarding by default if asked for X forwarding
Keywords
forwarding, openssh, race, sigalrm, trusted, untrusted, x11
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package
The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/
