Security Advisory Moderate: openssh security and bug fix update

Advisory: RHSA-2017:0641-1
Type: Security Advisory
Severity: Moderate
Issued on: 2017-03-21
Last updated on: 2017-03-21
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2015-8325

Details

An update for openssh is now available for Red Hat Enterprise Linux 6.

Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX,
and similar operating systems. It includes the core files necessary for both the
OpenSSH client and server.

Security Fix(es):

* It was discovered that the OpenSSH sshd daemon fetched PAM environment
settings before running the login program. In configurations with UseLogin=yes
and the pam_env PAM module configured to read user environment settings, a local
user could use this flaw to execute arbitrary code as root. (CVE-2015-8325)

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise
Linux 6.9 Release Notes and Red Hat Enterprise Linux 6.9 Technical Notes linked
from the References section.


Solution

For details on how to apply this update, which includes the changes described in
this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the OpenSSH server daemon (sshd) will be restarted
automatically.

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
openssh-5.3p1-122.el6.src.rpm     MD5: 3308356e636704e5bebee1210a32b48e
SHA-256: 49a63f855728b1c8873ce59ad9e2eebcca398ea14d9a6794f9bed51cf789e235
 
IA-32:
openssh-5.3p1-122.el6.i686.rpm     MD5: ce92a875987cef9ac507a1ca48233052
SHA-256: 7425f0c0f32cfe681d468a36fa29150e1f21cab48e603580411d6d5ff770f880
openssh-askpass-5.3p1-122.el6.i686.rpm     MD5: 15e87b6e06a5b4bf8ea1ae7a1b5920c2
SHA-256: b56311ae504b46a7dcc3dad50e558d095b182e1df33b61cecc86c2ca6683327e
openssh-clients-5.3p1-122.el6.i686.rpm     MD5: dce0dd9aa96b2aa42572b2c7345f58e7
SHA-256: 445ecadabc61d566b75d40be6eb50d5b66d9bfebe05fdd86429d1196f8d80137
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-ldap-5.3p1-122.el6.i686.rpm     MD5: 1826d8b66d0308e3609a3d03696ca825
SHA-256: 2efa38dac1ef02cc7e05bb1d362ce2017894fc8199a00c2c7ab4a26a85950526
openssh-server-5.3p1-122.el6.i686.rpm     MD5: 4b1038bbbd1cfca36069159759ea1dae
SHA-256: 4de29584b66e8070653405dcea97f18fa16e93266769c39a401d273ab4859a64
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
 
x86_64:
openssh-5.3p1-122.el6.x86_64.rpm     MD5: 51c1b46a72871db63ed5a440b5ec1efc
SHA-256: 8823efd0b6b6ee9c2be733764aa31fda8850ff2090b52fb6fd03f908b7dc7bb9
openssh-askpass-5.3p1-122.el6.x86_64.rpm     MD5: ba790a11499280f4363f0a755cfa11fc
SHA-256: 104ee10e4bd8b314faacae6a107af8c2db14f5aa69aa0cca6553eea4051617b7
openssh-clients-5.3p1-122.el6.x86_64.rpm     MD5: 3f9cf2bd11cfc39ae2d63700379c4dce
SHA-256: befacc7d4e3cdcc28e28f4f81c096e3f0b85c3431838f9c05766b9826135c125
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-debuginfo-5.3p1-122.el6.x86_64.rpm     MD5: 3c6b1907a4c5c7492fb233d0364200cc
SHA-256: 216da5f6f5d72092b96364511925023797ccbb8172d3c29ef943b2c8eea709f1
openssh-ldap-5.3p1-122.el6.x86_64.rpm     MD5: b5c012aa39a2b07ee8427311749b5d91
SHA-256: 5ab7f4acc452098f6abdc0067fc595c984ad763c055cb212e8ac6987355c4127
openssh-server-5.3p1-122.el6.x86_64.rpm     MD5: 877173ad751f9a663b3e7d78b1500605
SHA-256: 806b704703d726ef1e9d06ae14033657262c829ad265f24f3d21c92b4ec7d0d3
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
pam_ssh_agent_auth-0.9.3-122.el6.x86_64.rpm     MD5: 8e945ec41c72bde8f2da9c92eb2892fe
SHA-256: 7f821cd33b0b51cefd94e14ab0d9540dee86c478cdd7da99212a0ce7f6562d0f
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
openssh-5.3p1-122.el6.src.rpm     MD5: 3308356e636704e5bebee1210a32b48e
SHA-256: 49a63f855728b1c8873ce59ad9e2eebcca398ea14d9a6794f9bed51cf789e235
 
x86_64:
openssh-5.3p1-122.el6.x86_64.rpm     MD5: 51c1b46a72871db63ed5a440b5ec1efc
SHA-256: 8823efd0b6b6ee9c2be733764aa31fda8850ff2090b52fb6fd03f908b7dc7bb9
openssh-askpass-5.3p1-122.el6.x86_64.rpm     MD5: ba790a11499280f4363f0a755cfa11fc
SHA-256: 104ee10e4bd8b314faacae6a107af8c2db14f5aa69aa0cca6553eea4051617b7
openssh-clients-5.3p1-122.el6.x86_64.rpm     MD5: 3f9cf2bd11cfc39ae2d63700379c4dce
SHA-256: befacc7d4e3cdcc28e28f4f81c096e3f0b85c3431838f9c05766b9826135c125
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-debuginfo-5.3p1-122.el6.x86_64.rpm     MD5: 3c6b1907a4c5c7492fb233d0364200cc
SHA-256: 216da5f6f5d72092b96364511925023797ccbb8172d3c29ef943b2c8eea709f1
openssh-ldap-5.3p1-122.el6.x86_64.rpm     MD5: b5c012aa39a2b07ee8427311749b5d91
SHA-256: 5ab7f4acc452098f6abdc0067fc595c984ad763c055cb212e8ac6987355c4127
openssh-server-5.3p1-122.el6.x86_64.rpm     MD5: 877173ad751f9a663b3e7d78b1500605
SHA-256: 806b704703d726ef1e9d06ae14033657262c829ad265f24f3d21c92b4ec7d0d3
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
pam_ssh_agent_auth-0.9.3-122.el6.x86_64.rpm     MD5: 8e945ec41c72bde8f2da9c92eb2892fe
SHA-256: 7f821cd33b0b51cefd94e14ab0d9540dee86c478cdd7da99212a0ce7f6562d0f
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
openssh-5.3p1-122.el6.src.rpm     MD5: 3308356e636704e5bebee1210a32b48e
SHA-256: 49a63f855728b1c8873ce59ad9e2eebcca398ea14d9a6794f9bed51cf789e235
 
IA-32:
openssh-5.3p1-122.el6.i686.rpm     MD5: ce92a875987cef9ac507a1ca48233052
SHA-256: 7425f0c0f32cfe681d468a36fa29150e1f21cab48e603580411d6d5ff770f880
openssh-askpass-5.3p1-122.el6.i686.rpm     MD5: 15e87b6e06a5b4bf8ea1ae7a1b5920c2
SHA-256: b56311ae504b46a7dcc3dad50e558d095b182e1df33b61cecc86c2ca6683327e
openssh-clients-5.3p1-122.el6.i686.rpm     MD5: dce0dd9aa96b2aa42572b2c7345f58e7
SHA-256: 445ecadabc61d566b75d40be6eb50d5b66d9bfebe05fdd86429d1196f8d80137
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-ldap-5.3p1-122.el6.i686.rpm     MD5: 1826d8b66d0308e3609a3d03696ca825
SHA-256: 2efa38dac1ef02cc7e05bb1d362ce2017894fc8199a00c2c7ab4a26a85950526
openssh-server-5.3p1-122.el6.i686.rpm     MD5: 4b1038bbbd1cfca36069159759ea1dae
SHA-256: 4de29584b66e8070653405dcea97f18fa16e93266769c39a401d273ab4859a64
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
 
PPC:
openssh-5.3p1-122.el6.ppc64.rpm     MD5: 43ab61675bcae647bea6fa1f3692a4c5
SHA-256: 49ea62914cd92fbcecffb5802732b6a14e81f724d31dbfeb33669fadccae500e
openssh-askpass-5.3p1-122.el6.ppc64.rpm     MD5: 1ace8751c24a1615aaa02ddb9e3e64a4
SHA-256: fcd48e044fcd4a5ad1864dc7fd1b96c3e6f0805a79359681db497d7dc9044b97
openssh-clients-5.3p1-122.el6.ppc64.rpm     MD5: 568126fe97ec03f16f727fd08280d42c
SHA-256: 34f3bd38f822ce715f9170504595fa4cc89263f92320be991b2f63e1c2d913d0
openssh-debuginfo-5.3p1-122.el6.ppc.rpm     MD5: 9125a4b76b21a2e88456da0546f23b42
SHA-256: 03b8af27f0380a823fec1f44179c457f17bf14af3ab4e7197e6088583adbce51
openssh-debuginfo-5.3p1-122.el6.ppc64.rpm     MD5: f61dcfda547143826f715724016e7245
SHA-256: c5076836392cceba74a295c3180181a5209a9c363435ebe396bd2e623d82eb76
openssh-ldap-5.3p1-122.el6.ppc64.rpm     MD5: 7ff943bdfc18aea2bb5b6afdf8b92b31
SHA-256: 956de83004c3a47e4e8e41b31f5c9cac34644a921572a1d51b51b8bb828d717a
openssh-server-5.3p1-122.el6.ppc64.rpm     MD5: 976580aed7d68659641f4fec43de8bb8
SHA-256: aa48749fe7403a258f17bdd4d62293bbbaaa2d828b1a889440e8d5c16b3faa2a
pam_ssh_agent_auth-0.9.3-122.el6.ppc.rpm     MD5: d027e534a0fb89c926606d30fc705390
SHA-256: 1e5694598dd23875e7f51ff4ea1c277f30c8128d17afe6dd4538a6df72775a30
pam_ssh_agent_auth-0.9.3-122.el6.ppc64.rpm     MD5: 973b0b4810b0ef3944a4456fb70439ad
SHA-256: 4192658198da3e93fbe34c780520a33a7195eb9fd81f7a4f7d1d5a6b87fa8784
 
s390x:
openssh-5.3p1-122.el6.s390x.rpm     MD5: c37cf34e37bf4207f972f63f53d65d4e
SHA-256: 8d11d04b5eb0384003d34deb571fdbe53d695371a1c284157d20b24227d01cb5
openssh-askpass-5.3p1-122.el6.s390x.rpm     MD5: c8b711be769295a0ece0857c193609f9
SHA-256: cf4cd8961c6c59d3a57bd4ae533d3668bfe5411631f9db3dcaf375f12f9e4b34
openssh-clients-5.3p1-122.el6.s390x.rpm     MD5: c63f169091bdcf681c5672801916234d
SHA-256: ac490095cf04ec9292569999c4862ebcd9dd23643be5030f8203c4cbedbe3425
openssh-debuginfo-5.3p1-122.el6.s390.rpm     MD5: 7343345b6cb609df0a8ef7d335cec586
SHA-256: bdaf5031e41e3c44abba9063d7f850ba30b32677cdb6cab9220e1b31af1e2169
openssh-debuginfo-5.3p1-122.el6.s390x.rpm     MD5: e6a73cab6d1deac4ffa9fb18f9ebd5cd
SHA-256: 3b0553f7a7b762752d6e1378511b05e08fc24da0344eff99c82b054b30b2d422
openssh-ldap-5.3p1-122.el6.s390x.rpm     MD5: 7f96ae0053cf098c7c97848bc752d53a
SHA-256: 011e72fb1f4e07f49e6ff1fb344937436dc3487d2ab107c513bd5461f6bbf5ae
openssh-server-5.3p1-122.el6.s390x.rpm     MD5: b2c237dc244696f9c83d85a72087f0c8
SHA-256: 4b00476b1e4da750dda42387986a032b047343c5ed9c876f7f58e95f499c713d
pam_ssh_agent_auth-0.9.3-122.el6.s390.rpm     MD5: 0f42d23533ec83cb19ffdba884e58149
SHA-256: 398a2a7c74c4a567a7b197de5cf72477801db8d184248b748df5b868f3b46269
pam_ssh_agent_auth-0.9.3-122.el6.s390x.rpm     MD5: 95244d9a9a947d78f20a8920449223b1
SHA-256: 8c2f2ffd4d8068abe527b2d54da90f102aefe615022eb00a662687bc41b3417e
 
x86_64:
openssh-5.3p1-122.el6.x86_64.rpm     MD5: 51c1b46a72871db63ed5a440b5ec1efc
SHA-256: 8823efd0b6b6ee9c2be733764aa31fda8850ff2090b52fb6fd03f908b7dc7bb9
openssh-askpass-5.3p1-122.el6.x86_64.rpm     MD5: ba790a11499280f4363f0a755cfa11fc
SHA-256: 104ee10e4bd8b314faacae6a107af8c2db14f5aa69aa0cca6553eea4051617b7
openssh-clients-5.3p1-122.el6.x86_64.rpm     MD5: 3f9cf2bd11cfc39ae2d63700379c4dce
SHA-256: befacc7d4e3cdcc28e28f4f81c096e3f0b85c3431838f9c05766b9826135c125
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-debuginfo-5.3p1-122.el6.x86_64.rpm     MD5: 3c6b1907a4c5c7492fb233d0364200cc
SHA-256: 216da5f6f5d72092b96364511925023797ccbb8172d3c29ef943b2c8eea709f1
openssh-ldap-5.3p1-122.el6.x86_64.rpm     MD5: b5c012aa39a2b07ee8427311749b5d91
SHA-256: 5ab7f4acc452098f6abdc0067fc595c984ad763c055cb212e8ac6987355c4127
openssh-server-5.3p1-122.el6.x86_64.rpm     MD5: 877173ad751f9a663b3e7d78b1500605
SHA-256: 806b704703d726ef1e9d06ae14033657262c829ad265f24f3d21c92b4ec7d0d3
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
pam_ssh_agent_auth-0.9.3-122.el6.x86_64.rpm     MD5: 8e945ec41c72bde8f2da9c92eb2892fe
SHA-256: 7f821cd33b0b51cefd94e14ab0d9540dee86c478cdd7da99212a0ce7f6562d0f
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
openssh-5.3p1-122.el6.src.rpm     MD5: 3308356e636704e5bebee1210a32b48e
SHA-256: 49a63f855728b1c8873ce59ad9e2eebcca398ea14d9a6794f9bed51cf789e235
 
IA-32:
openssh-5.3p1-122.el6.i686.rpm     MD5: ce92a875987cef9ac507a1ca48233052
SHA-256: 7425f0c0f32cfe681d468a36fa29150e1f21cab48e603580411d6d5ff770f880
openssh-askpass-5.3p1-122.el6.i686.rpm     MD5: 15e87b6e06a5b4bf8ea1ae7a1b5920c2
SHA-256: b56311ae504b46a7dcc3dad50e558d095b182e1df33b61cecc86c2ca6683327e
openssh-clients-5.3p1-122.el6.i686.rpm     MD5: dce0dd9aa96b2aa42572b2c7345f58e7
SHA-256: 445ecadabc61d566b75d40be6eb50d5b66d9bfebe05fdd86429d1196f8d80137
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-ldap-5.3p1-122.el6.i686.rpm     MD5: 1826d8b66d0308e3609a3d03696ca825
SHA-256: 2efa38dac1ef02cc7e05bb1d362ce2017894fc8199a00c2c7ab4a26a85950526
openssh-server-5.3p1-122.el6.i686.rpm     MD5: 4b1038bbbd1cfca36069159759ea1dae
SHA-256: 4de29584b66e8070653405dcea97f18fa16e93266769c39a401d273ab4859a64
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
 
x86_64:
openssh-5.3p1-122.el6.x86_64.rpm     MD5: 51c1b46a72871db63ed5a440b5ec1efc
SHA-256: 8823efd0b6b6ee9c2be733764aa31fda8850ff2090b52fb6fd03f908b7dc7bb9
openssh-askpass-5.3p1-122.el6.x86_64.rpm     MD5: ba790a11499280f4363f0a755cfa11fc
SHA-256: 104ee10e4bd8b314faacae6a107af8c2db14f5aa69aa0cca6553eea4051617b7
openssh-clients-5.3p1-122.el6.x86_64.rpm     MD5: 3f9cf2bd11cfc39ae2d63700379c4dce
SHA-256: befacc7d4e3cdcc28e28f4f81c096e3f0b85c3431838f9c05766b9826135c125
openssh-debuginfo-5.3p1-122.el6.i686.rpm     MD5: 8b3d324dda7cd6e99d85205591db07b3
SHA-256: 5043714e4b683766daabe1fd421d23fc5eba96a2359225272517e61620550bc9
openssh-debuginfo-5.3p1-122.el6.x86_64.rpm     MD5: 3c6b1907a4c5c7492fb233d0364200cc
SHA-256: 216da5f6f5d72092b96364511925023797ccbb8172d3c29ef943b2c8eea709f1
openssh-ldap-5.3p1-122.el6.x86_64.rpm     MD5: b5c012aa39a2b07ee8427311749b5d91
SHA-256: 5ab7f4acc452098f6abdc0067fc595c984ad763c055cb212e8ac6987355c4127
openssh-server-5.3p1-122.el6.x86_64.rpm     MD5: 877173ad751f9a663b3e7d78b1500605
SHA-256: 806b704703d726ef1e9d06ae14033657262c829ad265f24f3d21c92b4ec7d0d3
pam_ssh_agent_auth-0.9.3-122.el6.i686.rpm     MD5: 2f37c039ebc48dafeb68c3f222a062cf
SHA-256: ebe79826fae0047389bd75d084fc0af82544d9b0fcafcf879188ec270ab6db03
pam_ssh_agent_auth-0.9.3-122.el6.x86_64.rpm     MD5: 8e945ec41c72bde8f2da9c92eb2892fe
SHA-256: 7f821cd33b0b51cefd94e14ab0d9540dee86c478cdd7da99212a0ce7f6562d0f
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1218424 - infinite loop, at 100% cpu in ssh if ^Z is pressed at password prompt
1327547 - ssh-copy-id fails with shells unaware of ~/
1328012 - CVE-2015-8325 openssh: privilege escalation via user's PAM environment and UseLogin=yes
1341747 - sftp -m doesn't work as advertised
1353359 - 5.3p1-117.el6 breaks gss-group1-sha1- key exchange algorithm for GSSAPIKeyExchange authentication
1353410 - [ssh-copy-id] add "The agent has no identities." in remote ~/.ssh/authorized_keys
1373836 - Remove RC4 cipher and questionable MACs enabled by default from OpenSSH
1397547 - SSH does not use the ibmca crypto hardware


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/