- Issued:
- 2017-08-31
- Updated:
- 2017-08-31
RHSA-2017:2563 - Security Advisory
Synopsis
Moderate: openssh security update
Type/Severity
Security Advisory: Moderate
Topic
An update for openssh is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server.
Security Fix(es):
- A covert timing channel flaw was found in the way OpenSSH handled authentication of non-existent users. A remote unauthenticated attacker could possibly use this flaw to determine valid user names by measuring the timing of server responses. (CVE-2016-6210)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the OpenSSH server daemon (sshd) will be restarted automatically.
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
Fixes
- BZ - 1357442 - CVE-2016-6210 openssh: User enumeration via covert timing channel
CVEs
References
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| openssh-5.3p1-123.el6_9.src.rpm | SHA-256: 3484fddaaeb73a0dbbdf8490fa4c095068e26bc3d107a0f791e31ce81997ef8d |
| x86_64 | |
| openssh-5.3p1-123.el6_9.x86_64.rpm | SHA-256: a697a1e26cea63e5814ece0fdc7a16aefab0e60f0ced194c15892734c1f0c39b |
| openssh-askpass-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 6911a747c10b8ac218ed9e5349fa59ae1781c5f6855c77464262f8815a1f05d0 |
| openssh-clients-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 8c266fb3b0330e42c14a75a31290bfc9a7bb074d035884ae3b46df3d9faa131a |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-ldap-5.3p1-123.el6_9.x86_64.rpm | SHA-256: b0f5c4655b29f678fd50ff10ede302c2fd80045e8aa77d2d63793e0a98e26c90 |
| openssh-server-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 7b037f3c2681aaaab40c4b9ee51a189269c7441393ede1d24bd04bec61dcc727 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.x86_64.rpm | SHA-256: 8c553833300104c1bbffcb38291d600d973c1c6d12f5b91d1e37014dcccc1d85 |
| i386 | |
| openssh-5.3p1-123.el6_9.i686.rpm | SHA-256: 38f7bebd303d3dce9c8c53a1dfb951ec9eb4be1e4024e8e781fed184470a05d1 |
| openssh-askpass-5.3p1-123.el6_9.i686.rpm | SHA-256: 4d7683f710854b0a5d20fa1b93cb4ab2b3c7381e3e748962d028c1c3ea316b8d |
| openssh-clients-5.3p1-123.el6_9.i686.rpm | SHA-256: cdaa287b91803a7a973d72e8ecbd60e9878931b7d9101eacb17d0fa915d415dc |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-ldap-5.3p1-123.el6_9.i686.rpm | SHA-256: 86a6cfa90ba4ab7c55a54756af89c698ece7a18d61465004e2cf2fcbc56c63d2 |
| openssh-server-5.3p1-123.el6_9.i686.rpm | SHA-256: c43e1e18d626bd8848e65ac3002dfccf168f7437272fadf2ef900b7b2485a69b |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| openssh-5.3p1-123.el6_9.src.rpm | SHA-256: 3484fddaaeb73a0dbbdf8490fa4c095068e26bc3d107a0f791e31ce81997ef8d |
| x86_64 | |
| openssh-5.3p1-123.el6_9.x86_64.rpm | SHA-256: a697a1e26cea63e5814ece0fdc7a16aefab0e60f0ced194c15892734c1f0c39b |
| openssh-askpass-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 6911a747c10b8ac218ed9e5349fa59ae1781c5f6855c77464262f8815a1f05d0 |
| openssh-clients-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 8c266fb3b0330e42c14a75a31290bfc9a7bb074d035884ae3b46df3d9faa131a |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-ldap-5.3p1-123.el6_9.x86_64.rpm | SHA-256: b0f5c4655b29f678fd50ff10ede302c2fd80045e8aa77d2d63793e0a98e26c90 |
| openssh-server-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 7b037f3c2681aaaab40c4b9ee51a189269c7441393ede1d24bd04bec61dcc727 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.x86_64.rpm | SHA-256: 8c553833300104c1bbffcb38291d600d973c1c6d12f5b91d1e37014dcccc1d85 |
| i386 | |
| openssh-5.3p1-123.el6_9.i686.rpm | SHA-256: 38f7bebd303d3dce9c8c53a1dfb951ec9eb4be1e4024e8e781fed184470a05d1 |
| openssh-askpass-5.3p1-123.el6_9.i686.rpm | SHA-256: 4d7683f710854b0a5d20fa1b93cb4ab2b3c7381e3e748962d028c1c3ea316b8d |
| openssh-clients-5.3p1-123.el6_9.i686.rpm | SHA-256: cdaa287b91803a7a973d72e8ecbd60e9878931b7d9101eacb17d0fa915d415dc |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-ldap-5.3p1-123.el6_9.i686.rpm | SHA-256: 86a6cfa90ba4ab7c55a54756af89c698ece7a18d61465004e2cf2fcbc56c63d2 |
| openssh-server-5.3p1-123.el6_9.i686.rpm | SHA-256: c43e1e18d626bd8848e65ac3002dfccf168f7437272fadf2ef900b7b2485a69b |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| openssh-5.3p1-123.el6_9.src.rpm | SHA-256: 3484fddaaeb73a0dbbdf8490fa4c095068e26bc3d107a0f791e31ce81997ef8d |
| x86_64 | |
| openssh-5.3p1-123.el6_9.x86_64.rpm | SHA-256: a697a1e26cea63e5814ece0fdc7a16aefab0e60f0ced194c15892734c1f0c39b |
| openssh-askpass-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 6911a747c10b8ac218ed9e5349fa59ae1781c5f6855c77464262f8815a1f05d0 |
| openssh-clients-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 8c266fb3b0330e42c14a75a31290bfc9a7bb074d035884ae3b46df3d9faa131a |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-ldap-5.3p1-123.el6_9.x86_64.rpm | SHA-256: b0f5c4655b29f678fd50ff10ede302c2fd80045e8aa77d2d63793e0a98e26c90 |
| openssh-server-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 7b037f3c2681aaaab40c4b9ee51a189269c7441393ede1d24bd04bec61dcc727 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.x86_64.rpm | SHA-256: 8c553833300104c1bbffcb38291d600d973c1c6d12f5b91d1e37014dcccc1d85 |
| i386 | |
| openssh-5.3p1-123.el6_9.i686.rpm | SHA-256: 38f7bebd303d3dce9c8c53a1dfb951ec9eb4be1e4024e8e781fed184470a05d1 |
| openssh-askpass-5.3p1-123.el6_9.i686.rpm | SHA-256: 4d7683f710854b0a5d20fa1b93cb4ab2b3c7381e3e748962d028c1c3ea316b8d |
| openssh-clients-5.3p1-123.el6_9.i686.rpm | SHA-256: cdaa287b91803a7a973d72e8ecbd60e9878931b7d9101eacb17d0fa915d415dc |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-ldap-5.3p1-123.el6_9.i686.rpm | SHA-256: 86a6cfa90ba4ab7c55a54756af89c698ece7a18d61465004e2cf2fcbc56c63d2 |
| openssh-server-5.3p1-123.el6_9.i686.rpm | SHA-256: c43e1e18d626bd8848e65ac3002dfccf168f7437272fadf2ef900b7b2485a69b |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| openssh-5.3p1-123.el6_9.src.rpm | SHA-256: 3484fddaaeb73a0dbbdf8490fa4c095068e26bc3d107a0f791e31ce81997ef8d |
| s390x | |
| openssh-5.3p1-123.el6_9.s390x.rpm | SHA-256: af9d0a50080591c351e6340694fc3b153a32647f187222689d2eee711f8c073f |
| openssh-askpass-5.3p1-123.el6_9.s390x.rpm | SHA-256: a51a0d37971e459488ad5c6c77d8ea382f3a3993ab9fc3abb3b7ee10066190a9 |
| openssh-clients-5.3p1-123.el6_9.s390x.rpm | SHA-256: 84b7b864034bd9e1881a206260cc68c36fe6edf7fe095e8f76552389fbed47a4 |
| openssh-debuginfo-5.3p1-123.el6_9.s390.rpm | SHA-256: 04262c3417787e65962200ebbfe56e03899218ba803e5983e09daea5f547e72c |
| openssh-debuginfo-5.3p1-123.el6_9.s390x.rpm | SHA-256: 446d7b2ba1d54c7d84ba40f9186ab5d76fddeb97f4e89a3ad3e97ff8d626cb84 |
| openssh-debuginfo-5.3p1-123.el6_9.s390x.rpm | SHA-256: 446d7b2ba1d54c7d84ba40f9186ab5d76fddeb97f4e89a3ad3e97ff8d626cb84 |
| openssh-ldap-5.3p1-123.el6_9.s390x.rpm | SHA-256: f531bbcff390efcb1abe05f66d514dcad5af2578f5b59d99a9d43bff259cf37d |
| openssh-server-5.3p1-123.el6_9.s390x.rpm | SHA-256: 63e1037e32d49c21c2de87d0e97dcfbb52411d1891ff7dadafa23c4199b2d5dd |
| pam_ssh_agent_auth-0.9.3-123.el6_9.s390.rpm | SHA-256: 9f3d221ca84e31710ec0bb35e23a9226e8f850a9c5f671310a5b760e5c1e087c |
| pam_ssh_agent_auth-0.9.3-123.el6_9.s390x.rpm | SHA-256: 9d6e24f27b78af011640acfe7c1e8eeff69e4cc45f04de5dbeb5ef85b26d2c47 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| openssh-5.3p1-123.el6_9.src.rpm | SHA-256: 3484fddaaeb73a0dbbdf8490fa4c095068e26bc3d107a0f791e31ce81997ef8d |
| ppc64 | |
| openssh-5.3p1-123.el6_9.ppc64.rpm | SHA-256: f4499d39374cd07a4b3f343075e313ec132d915213849380d1191a31af139b13 |
| openssh-askpass-5.3p1-123.el6_9.ppc64.rpm | SHA-256: 5e74b5b58ee5bf5bcb6d7ac64e167d350ab8c120ff8f5c09775176b1d4896f23 |
| openssh-clients-5.3p1-123.el6_9.ppc64.rpm | SHA-256: 09adbe587a93b70e4ece21628fbbf3a0f078a2b83a713b4f9f46ed2d2fa6ff7e |
| openssh-debuginfo-5.3p1-123.el6_9.ppc.rpm | SHA-256: e374c45c2dd56d1526a0ddf400c783b782dc425968eef8081dcec93f99c6a6a0 |
| openssh-debuginfo-5.3p1-123.el6_9.ppc64.rpm | SHA-256: be85e776b4876603d6df324531e1a0856b803ba2eccd04dcf68082221a5ac2d8 |
| openssh-debuginfo-5.3p1-123.el6_9.ppc64.rpm | SHA-256: be85e776b4876603d6df324531e1a0856b803ba2eccd04dcf68082221a5ac2d8 |
| openssh-ldap-5.3p1-123.el6_9.ppc64.rpm | SHA-256: a3462b9f87d5fc9e7625fe533667b638eadac8f1c2ccb8bf215012c4b47d6af6 |
| openssh-server-5.3p1-123.el6_9.ppc64.rpm | SHA-256: 7153eb47cc474f6b1aa4d69b8442ddaf098b5f5f071448213a0f86ef5d0e4a7d |
| pam_ssh_agent_auth-0.9.3-123.el6_9.ppc.rpm | SHA-256: b0bb7e62006fde0cd10d7b3103583276ef3883cacaf2fce7f643c7fa0c60a4e7 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.ppc64.rpm | SHA-256: fe08bfdb76d5ecca5c18ccd1ffbc51dc04420ad2ffed4a35a2551ae962bdc884 |
Red Hat Enterprise Linux for Scientific Computing 6
| SRPM | |
|---|---|
| openssh-5.3p1-123.el6_9.src.rpm | SHA-256: 3484fddaaeb73a0dbbdf8490fa4c095068e26bc3d107a0f791e31ce81997ef8d |
| x86_64 | |
| openssh-5.3p1-123.el6_9.x86_64.rpm | SHA-256: a697a1e26cea63e5814ece0fdc7a16aefab0e60f0ced194c15892734c1f0c39b |
| openssh-askpass-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 6911a747c10b8ac218ed9e5349fa59ae1781c5f6855c77464262f8815a1f05d0 |
| openssh-clients-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 8c266fb3b0330e42c14a75a31290bfc9a7bb074d035884ae3b46df3d9faa131a |
| openssh-debuginfo-5.3p1-123.el6_9.i686.rpm | SHA-256: 35ab463cf257e408eab7be6457285d1c3c6b214f724b3581fbcfc734201a05f6 |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-debuginfo-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 80538b822420f6a756e238ddd5059b3daac33c697816b5149f9e8a375a7f3f2b |
| openssh-ldap-5.3p1-123.el6_9.x86_64.rpm | SHA-256: b0f5c4655b29f678fd50ff10ede302c2fd80045e8aa77d2d63793e0a98e26c90 |
| openssh-server-5.3p1-123.el6_9.x86_64.rpm | SHA-256: 7b037f3c2681aaaab40c4b9ee51a189269c7441393ede1d24bd04bec61dcc727 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.i686.rpm | SHA-256: d9bdeec51fd69cd6f9fb11faf88ae7b49c52337108be075e80263fef47601481 |
| pam_ssh_agent_auth-0.9.3-123.el6_9.x86_64.rpm | SHA-256: 8c553833300104c1bbffcb38291d600d973c1c6d12f5b91d1e37014dcccc1d85 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.