Oracle alert ELSA-2025-16823 (openssh)
| From: | Errata Announcements for Oracle Linux via El-errata <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2025-16823 Moderate: Oracle Linux 8 openssh security update | |
| Date: | Mon, 29 Sep 2025 15:57:34 -0700 | |
| Message-ID: | <mailman.132.1759186663.31.el-errata@oss.oracle.com> |
Oracle Linux Security Advisory ELSA-2025-16823 http://linux.oracle.com/errata/ELSA-2025-16823.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: openssh-8.0p1-26.0.1.el8_10.x86_64.rpm openssh-askpass-8.0p1-26.0.1.el8_10.x86_64.rpm openssh-cavs-8.0p1-26.0.1.el8_10.x86_64.rpm openssh-clients-8.0p1-26.0.1.el8_10.x86_64.rpm openssh-keycat-8.0p1-26.0.1.el8_10.x86_64.rpm openssh-ldap-8.0p1-26.0.1.el8_10.x86_64.rpm openssh-server-8.0p1-26.0.1.el8_10.x86_64.rpm pam_ssh_agent_auth-0.10.3-7.26.0.1.el8_10.x86_64.rpm aarch64: openssh-8.0p1-26.0.1.el8_10.aarch64.rpm openssh-askpass-8.0p1-26.0.1.el8_10.aarch64.rpm openssh-cavs-8.0p1-26.0.1.el8_10.aarch64.rpm openssh-clients-8.0p1-26.0.1.el8_10.aarch64.rpm openssh-keycat-8.0p1-26.0.1.el8_10.aarch64.rpm openssh-ldap-8.0p1-26.0.1.el8_10.aarch64.rpm openssh-server-8.0p1-26.0.1.el8_10.aarch64.rpm pam_ssh_agent_auth-0.10.3-7.26.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/openssh-8.0p1-26.... Related CVEs: CVE-2025-26465 Description of changes: [8.0p1-26.0.1] - Update upstream references [Orabug: 36587718] [8.0p1-26] - Fix missing invalid error code checks in OpenSSH. It prevents a MITM attack when VerifyHostKeyDNS is on (CVE-2025-26465) Resolves: RHEL-109228 _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata