- Issued:
- 2005-06-09
- Updated:
- 2005-06-09
RHBA-2005:046 - Bug Fix Advisory
Synopsis
openssh bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated openssh packages that fix a bug in sshd and change a default type
of X11 forwarding are now available for Red Hat Enterprise Linux 4.
Description
OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. This
package includes the core files necessary for both the OpenSSH client and
server.
When authenticating incoming connections, sshd sets up a timeout using the
SIGALRM signal to limit the amount of time which an unauthenticated user
can keep a connection open. If the timeout was reached while sshd was
logging a message via syslog, sshd would deadlock.
The openssh-3.9p1 package adds X11 untrusted forwarding, which disables
access to many functionalities of the forwarded X11 display. This should
improve security, although few X11 client applications are fully functional
with this extension. This update sets the default type to trusted X11
forwarding.
All users of openssh should upgrade to these updated packages, which
resolve these issues.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
Fixes
- BZ - 150262 - SSH client should use trusted X forwarding by default if asked for X forwarding
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 4
SRPM | |
---|---|
openssh-3.9p1-8.RHEL4.4.src.rpm | SHA-256: e14a0533aba992029c2b9252c9a1e3559a28f75c0db465302e1129783b266779 |
x86_64 | |
openssh-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: c038e4fab6096c565d6509562bb6e1d4fd4f8fcc84c9d0eaf69c1f44519e5c3a |
openssh-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: c038e4fab6096c565d6509562bb6e1d4fd4f8fcc84c9d0eaf69c1f44519e5c3a |
openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: afbf906a6fb8b782ad2173b6a1109c5991710c7c5aedecbe21332518761c1486 |
openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: afbf906a6fb8b782ad2173b6a1109c5991710c7c5aedecbe21332518761c1486 |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: dddc4f732afec86cff2e3bc1704863c43b8b9827206392bc48c0e597f4685c90 |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: dddc4f732afec86cff2e3bc1704863c43b8b9827206392bc48c0e597f4685c90 |
openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 74b7983a460c2a0737e56c4c6e7121f6a42504b822540672068375f3b28e3ec7 |
openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 74b7983a460c2a0737e56c4c6e7121f6a42504b822540672068375f3b28e3ec7 |
openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 793efedb9120e8535ada7d2eb83392cba57b01925c8651150fa3f579335675bf |
openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 793efedb9120e8535ada7d2eb83392cba57b01925c8651150fa3f579335675bf |
ia64 | |
openssh-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: 5aa1fde1f94c576447b2dcffddd104e7f24a18ff7579f9f4645f782d6d41eb3b |
openssh-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: 5aa1fde1f94c576447b2dcffddd104e7f24a18ff7579f9f4645f782d6d41eb3b |
openssh-askpass-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: 0d1b69c6239aad5e7f9486f69ab2c86b916545cb9d7ba96715a2bac304312f6f |
openssh-askpass-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: 0d1b69c6239aad5e7f9486f69ab2c86b916545cb9d7ba96715a2bac304312f6f |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: c542651dc42960ce8f6577c88fb0a5c2b530a0209a027da55d7164286da42d4b |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: c542651dc42960ce8f6577c88fb0a5c2b530a0209a027da55d7164286da42d4b |
openssh-clients-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: d75c10d5fe627f7b559f1c503ffc91896be24a66c81124887e8260c33e3d29cf |
openssh-clients-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: d75c10d5fe627f7b559f1c503ffc91896be24a66c81124887e8260c33e3d29cf |
openssh-server-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: e4c63ba774822b08211493c3c31ff045fd95422fb191b58e1015b016ee8d79af |
openssh-server-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: e4c63ba774822b08211493c3c31ff045fd95422fb191b58e1015b016ee8d79af |
i386 | |
openssh-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 42b9fe37ae2fafd2c353c6635d71620c6b7587e89a89674d7c45837a70acd70a |
openssh-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 42b9fe37ae2fafd2c353c6635d71620c6b7587e89a89674d7c45837a70acd70a |
openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 2d4f6c3dcca5dd96a7609dac59f63ebe513bd118d3ad27396a04054a688aa5cc |
openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 2d4f6c3dcca5dd96a7609dac59f63ebe513bd118d3ad27396a04054a688aa5cc |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 301026d7b7878a149f46f7bdfa5c452b1b154c322b526dc6bc7f8c728bdef43d |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 301026d7b7878a149f46f7bdfa5c452b1b154c322b526dc6bc7f8c728bdef43d |
openssh-clients-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 67e56d2a7630b5558c54758feb08e6cc819bdfc82706b6c2f8c364f9e16bf697 |
openssh-clients-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 67e56d2a7630b5558c54758feb08e6cc819bdfc82706b6c2f8c364f9e16bf697 |
openssh-server-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: e94c52cc7514e5fc90882394740908bc853d1e58be4348cd05a6a4930383e923 |
openssh-server-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: e94c52cc7514e5fc90882394740908bc853d1e58be4348cd05a6a4930383e923 |
Red Hat Enterprise Linux Workstation 4
SRPM | |
---|---|
openssh-3.9p1-8.RHEL4.4.src.rpm | SHA-256: e14a0533aba992029c2b9252c9a1e3559a28f75c0db465302e1129783b266779 |
x86_64 | |
openssh-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: c038e4fab6096c565d6509562bb6e1d4fd4f8fcc84c9d0eaf69c1f44519e5c3a |
openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: afbf906a6fb8b782ad2173b6a1109c5991710c7c5aedecbe21332518761c1486 |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: dddc4f732afec86cff2e3bc1704863c43b8b9827206392bc48c0e597f4685c90 |
openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 74b7983a460c2a0737e56c4c6e7121f6a42504b822540672068375f3b28e3ec7 |
openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 793efedb9120e8535ada7d2eb83392cba57b01925c8651150fa3f579335675bf |
ia64 | |
openssh-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: 5aa1fde1f94c576447b2dcffddd104e7f24a18ff7579f9f4645f782d6d41eb3b |
openssh-askpass-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: 0d1b69c6239aad5e7f9486f69ab2c86b916545cb9d7ba96715a2bac304312f6f |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: c542651dc42960ce8f6577c88fb0a5c2b530a0209a027da55d7164286da42d4b |
openssh-clients-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: d75c10d5fe627f7b559f1c503ffc91896be24a66c81124887e8260c33e3d29cf |
openssh-server-3.9p1-8.RHEL4.4.ia64.rpm | SHA-256: e4c63ba774822b08211493c3c31ff045fd95422fb191b58e1015b016ee8d79af |
i386 | |
openssh-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 42b9fe37ae2fafd2c353c6635d71620c6b7587e89a89674d7c45837a70acd70a |
openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 2d4f6c3dcca5dd96a7609dac59f63ebe513bd118d3ad27396a04054a688aa5cc |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 301026d7b7878a149f46f7bdfa5c452b1b154c322b526dc6bc7f8c728bdef43d |
openssh-clients-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 67e56d2a7630b5558c54758feb08e6cc819bdfc82706b6c2f8c364f9e16bf697 |
openssh-server-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: e94c52cc7514e5fc90882394740908bc853d1e58be4348cd05a6a4930383e923 |
Red Hat Enterprise Linux Desktop 4
SRPM | |
---|---|
openssh-3.9p1-8.RHEL4.4.src.rpm | SHA-256: e14a0533aba992029c2b9252c9a1e3559a28f75c0db465302e1129783b266779 |
x86_64 | |
openssh-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: c038e4fab6096c565d6509562bb6e1d4fd4f8fcc84c9d0eaf69c1f44519e5c3a |
openssh-askpass-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: afbf906a6fb8b782ad2173b6a1109c5991710c7c5aedecbe21332518761c1486 |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: dddc4f732afec86cff2e3bc1704863c43b8b9827206392bc48c0e597f4685c90 |
openssh-clients-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 74b7983a460c2a0737e56c4c6e7121f6a42504b822540672068375f3b28e3ec7 |
openssh-server-3.9p1-8.RHEL4.4.x86_64.rpm | SHA-256: 793efedb9120e8535ada7d2eb83392cba57b01925c8651150fa3f579335675bf |
i386 | |
openssh-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 42b9fe37ae2fafd2c353c6635d71620c6b7587e89a89674d7c45837a70acd70a |
openssh-askpass-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 2d4f6c3dcca5dd96a7609dac59f63ebe513bd118d3ad27396a04054a688aa5cc |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 301026d7b7878a149f46f7bdfa5c452b1b154c322b526dc6bc7f8c728bdef43d |
openssh-clients-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: 67e56d2a7630b5558c54758feb08e6cc819bdfc82706b6c2f8c364f9e16bf697 |
openssh-server-3.9p1-8.RHEL4.4.i386.rpm | SHA-256: e94c52cc7514e5fc90882394740908bc853d1e58be4348cd05a6a4930383e923 |
Red Hat Enterprise Linux for IBM z Systems 4
SRPM | |
---|---|
openssh-3.9p1-8.RHEL4.4.src.rpm | SHA-256: e14a0533aba992029c2b9252c9a1e3559a28f75c0db465302e1129783b266779 |
s390x | |
openssh-3.9p1-8.RHEL4.4.s390x.rpm | SHA-256: 161572bc4e5cade5308c9a02d52d7104fe01b910778723a316217c1b75214f4e |
openssh-askpass-3.9p1-8.RHEL4.4.s390x.rpm | SHA-256: dc2f19f2c4b6610c15f05b0d774088019feb82b16353bc896a9eb6f632c09d1e |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.s390x.rpm | SHA-256: d72cb6357ebbc5de6aa5d4e99f39c4cde8c6a194dc70f52fd0315aa79686c001 |
openssh-clients-3.9p1-8.RHEL4.4.s390x.rpm | SHA-256: 170a7fd4a21c016da2f99ed4e2a6504c8da4036864ac3a4e5f29bc11d41d2766 |
openssh-server-3.9p1-8.RHEL4.4.s390x.rpm | SHA-256: f92412905a0555f0479fc106432ea8ac45b7b5f7ff1d615185f53f6007cf31c4 |
s390 | |
openssh-3.9p1-8.RHEL4.4.s390.rpm | SHA-256: 24ee282a4e144e2d1433a4264559747191deec750ccc209bec64d2a0574f25e6 |
openssh-askpass-3.9p1-8.RHEL4.4.s390.rpm | SHA-256: f960f40c5349042ad3c058cdfcc1e465fc021d55e21c5b3e13bed2487a7be0a3 |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.s390.rpm | SHA-256: 8cfbceaf6124ea0bb76cb3c405847ac7d545fa59739f24f18345e26a150e14af |
openssh-clients-3.9p1-8.RHEL4.4.s390.rpm | SHA-256: d7fae8a6807bcf885f2aebb5ba933b23bd604b29650fabdedcce3137b36917a0 |
openssh-server-3.9p1-8.RHEL4.4.s390.rpm | SHA-256: 2a11eec9a55cdf5b3fa2079fe8bc48d379cb9810892cb7b1860126e5439819a4 |
Red Hat Enterprise Linux for Power, big endian 4
SRPM | |
---|---|
openssh-3.9p1-8.RHEL4.4.src.rpm | SHA-256: e14a0533aba992029c2b9252c9a1e3559a28f75c0db465302e1129783b266779 |
ppc | |
openssh-3.9p1-8.RHEL4.4.ppc.rpm | SHA-256: 6f92897571fd5556b4a076e860f59567c401b64eb64f0501caf5b935eb9e2557 |
openssh-askpass-3.9p1-8.RHEL4.4.ppc.rpm | SHA-256: 482901f9fa0e182df3b629069cfa6bbfe648042a3c531ac5669c085774eaf16c |
openssh-askpass-gnome-3.9p1-8.RHEL4.4.ppc.rpm | SHA-256: 4474080cbe0ad16d702e363693a6fafec41f9f25a0ce0e29fdfddd4db69d24fe |
openssh-clients-3.9p1-8.RHEL4.4.ppc.rpm | SHA-256: 76cec5d31f7dda9c2d4bd66b649cda57114e7d76e892585573daa49ad294473b |
openssh-server-3.9p1-8.RHEL4.4.ppc.rpm | SHA-256: 39cb82f5294f18aa84d232150b6aae8d68d0089cd0172b5ac5f86a58a9c15cea |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.