Пакет openssh-cavs-8.0p1-27.el8_10.x86_64 content_copy download

×

* Wed Dec 10 2025 Zoltan Fridrich <zfridric@redhat.com> - 8.0p1-27
- CVE-2025-61984: Reject usernames with control characters
  Resolves: RHEL-128400
- CVE-2025-61985: Reject URL-strings with NULL characters
  Resolves: RHEL-128390

* Wed Aug 20 2025 Antonio Vieiro <avieirov@redhat.com> - 8.0p1-26
- Fix missing invalid error code checks in OpenSSH. It prevents
  a MITM attack when VerifyHostKeyDNS is on (CVE-2025-26465)
  Resolves: RHEL-109228

* Tue Jun 25 2024 Stepan Broz <sbroz@redhat.com> - 8.0p1-25
- Upstream: Ignore SIGPIPE earlier in main()
  Resolves: RHEL-37743

* Tue Feb 06 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.0p1-24
- Providing a kill switch for scp to deal with CVE-2020-15778
  Resolves: RHEL-22870

* Fri Jan 05 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.0p1-23
- Fix Terrapin attack
  Resolves: RHEL-19308

* Thu Dec 21 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.0p1-22
- Fix Terrapin attack
  Resolves: RHEL-19308
- Forbid shell metasymbols in username/hostname
  Resolves: RHEL-19788

* Tue Nov 07 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.0p1-21
- Using DigestSign/DigestVerify functions for better FIPS compatibility
  Resolves: RHEL-5217

* Mon Oct 30 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.0p1-20
- Limit artificial delays in sshd while login using AD user
  Resolves: RHEL-1684
- Add comment to OpenSSH server config about FIPS-incompatible key
  Resolves: RHEL-5221
- Avoid killing all processes on system in case of race condition
  Resolves: RHEL-11548
- Avoid sshd_config 256K limit
  Resolves: RHEL-5279
- Using DigestSign/DigestVerify functions for better FIPS compatibility
  Resolves: RHEL-5217
- Fix GSS KEX causing ssh failures when connecting to WinSSHD
  Resolves: RHEL-5321

* Thu Aug 24 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 8.0p1-19
- rebuilt
  Related: CVE-2023-38408

* Wed Jul 26 2023 MSVSphere Packaging Team <packager@msvsphere.ru> - 8.0p1-18
- Rebuilt for MSVSphere 8.8