(RHSA-2021:4368) Moderate: openssh security update

2021-11-0909:11:41

access.redhat.com

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

0.003 Low

EPSS

Percentile

70.9%

JSON

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.

Security Fix(es):

openssh: Observable discrepancy leading to an information leak in the algorithm negotiation (CVE-2020-14145)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8x86_64openssh-clients< 8.0p1-10.el8openssh-clients-8.0p1-10.el8.x86_64.rpm
RedHat8ppc64leopenssh-debuginfo< 8.0p1-10.el8openssh-debuginfo-8.0p1-10.el8.ppc64le.rpm
RedHat8x86_64openssh-ldap< 8.0p1-10.el8openssh-ldap-8.0p1-10.el8.x86_64.rpm
RedHat8x86_64openssh-server< 8.0p1-10.el8openssh-server-8.0p1-10.el8.x86_64.rpm
RedHat8x86_64openssh-askpass< 8.0p1-10.el8openssh-askpass-8.0p1-10.el8.x86_64.rpm
RedHat8s390xopenssh-ldap< 8.0p1-10.el8openssh-ldap-8.0p1-10.el8.s390x.rpm
RedHat8x86_64pam_ssh_agent_auth< 0.10.3-7.10.el8pam_ssh_agent_auth-0.10.3-7.10.el8.x86_64.rpm
RedHat8aarch64openssh-debugsource< 8.0p1-10.el8openssh-debugsource-8.0p1-10.el8.aarch64.rpm
RedHat8ppc64leopenssh< 8.0p1-10.el8openssh-8.0p1-10.el8.ppc64le.rpm
RedHat8s390xopenssh-askpass-debuginfo< 8.0p1-10.el8openssh-askpass-debuginfo-8.0p1-10.el8.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	x86_64	openssh-clients	< 8.0p1-10.el8	openssh-clients-8.0p1-10.el8.x86_64.rpm
RedHat	8	ppc64le	openssh-debuginfo	< 8.0p1-10.el8	openssh-debuginfo-8.0p1-10.el8.ppc64le.rpm
RedHat	8	x86_64	openssh-ldap	< 8.0p1-10.el8	openssh-ldap-8.0p1-10.el8.x86_64.rpm
RedHat	8	x86_64	openssh-server	< 8.0p1-10.el8	openssh-server-8.0p1-10.el8.x86_64.rpm
RedHat	8	x86_64	openssh-askpass	< 8.0p1-10.el8	openssh-askpass-8.0p1-10.el8.x86_64.rpm
RedHat	8	s390x	openssh-ldap	< 8.0p1-10.el8	openssh-ldap-8.0p1-10.el8.s390x.rpm
RedHat	8	x86_64	pam_ssh_agent_auth	< 0.10.3-7.10.el8	pam_ssh_agent_auth-0.10.3-7.10.el8.x86_64.rpm
RedHat	8	aarch64	openssh-debugsource	< 8.0p1-10.el8	openssh-debugsource-8.0p1-10.el8.aarch64.rpm
RedHat	8	ppc64le	openssh	< 8.0p1-10.el8	openssh-8.0p1-10.el8.ppc64le.rpm
RedHat	8	s390x	openssh-askpass-debuginfo	< 8.0p1-10.el8	openssh-askpass-debuginfo-8.0p1-10.el8.s390x.rpm