Oracle alert ELSA-2016-0465 (openssh)

From:
    	       Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> 
To:
    	       el-errata@oss.oracle.com 
Subject:
    	       [El-errata] ELSA-2016-0465 Moderate: Oracle Linux 7 openssh security update 
Date:
    	       Mon, 21 Mar 2016 16:24:33 -0700
Message-ID:
    	       <56F082B1.50206@oracle.com>
Oracle Linux Security Advisory ELSA-2016-0465

http://linux.oracle.com/errata/ELSA-2016-0465.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
openssh-6.6.1p1-25.el7_2.x86_64.rpm
openssh-askpass-6.6.1p1-25.el7_2.x86_64.rpm
openssh-clients-6.6.1p1-25.el7_2.x86_64.rpm
openssh-keycat-6.6.1p1-25.el7_2.x86_64.rpm
openssh-ldap-6.6.1p1-25.el7_2.x86_64.rpm
openssh-server-6.6.1p1-25.el7_2.x86_64.rpm
openssh-server-sysvinit-6.6.1p1-25.el7_2.x86_64.rpm
pam_ssh_agent_auth-0.9.3-9.25.el7_2.i686.rpm
pam_ssh_agent_auth-0.9.3-9.25.el7_2.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/openssh-6.6.1p1-2...

Description of changes:

[6.6.1p1-25 + 0.9.3-9]
- CVE-2016-1908: possible fallback from untrusted to trusted X11 
forwarding (#1298741)

[6.6.1p1-24 + 0.9.3-9]
- CVE-2016-3115: missing sanitisation of input for X11 forwarding (#1317818)

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

From:		Errata Announcements for Oracle Linux <el-errata@oss.oracle.com>
To:		el-errata@oss.oracle.com
Subject:		[El-errata] ELSA-2016-0465 Moderate: Oracle Linux 7 openssh security update
Date:		Mon, 21 Mar 2016 16:24:33 -0700
Message-ID:		<56F082B1.50206@oracle.com>