RHSA-2016:0466

Description

Red Hat Security Advisory: openssh security update

Affected Systems

• redhat•openssh

  < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7

• redhat•openssh-askpass

  < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7

• redhat•openssh-clients

  < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7

• redhat•openssh-debuginfo

  < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7

• redhat•openssh-ldap

  < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7

• redhat•openssh-server

  < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7 | < 0:5.3p1-114.el6_7

• redhat•pam_ssh_agent_auth

  < 0:0.9.3-114.el6_7 | < 0:0.9.3-114.el6_7 | < 0:0.9.3-114.el6_7 | < 0:0.9.3-114.el6_7

References (13)

• https://access.redhat.com/errata/RHSA-2016:0466
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=1245969
• https://bugzilla.redhat.com/show_bug.cgi?id=1316829
• https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_0466.json
• https://access.redhat.com/security/cve/CVE-2015-5600
• https://www.cve.org/CVERecord?id=CVE-2015-5600
• https://nvd.nist.gov/vuln/detail/CVE-2015-5600
• https://kingcope.wordpress.com/2015/07/16/openssh-keyboard-interactive-authentication-brute-force-vulnerability-maxauthtries-bypass/
• https://access.redhat.com/security/cve/CVE-2016-3115
• https://www.cve.org/CVERecord?id=CVE-2016-3115
• https://nvd.nist.gov/vuln/detail/CVE-2016-3115
• http://www.openssh.com/txt/x11fwd.adv