This update brings security fix for two announced vulnerabilities. Namely XSECURITY restrictions bypass under certain conditions AND weakness of agent locking (ssh-add -x) to password guessing (more info in related bugs). It also provides new version of openssh-6.9 which is bringing many bugfixes and few new features with maintaining compatibility with previous version.

How to install

sudo dnf upgrade --advisory=FEDORA-2015-11063

This update has been submitted for testing by jjelen.

6 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/102650/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/102650/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 testing updates repository.

6 years ago

This update has been pushed to testing

6 years ago
User Icon dandim commented & provided feedback 6 years ago
karma

Works good

User Icon norenh commented & provided feedback 6 years ago
karma

No regressions detected

Critical path update approved

6 years ago
User Icon dhgutteridge commented & provided feedback 6 years ago
karma

No regressions noted in everyday use.

User Icon bradw commented & provided feedback 6 years ago
karma

Personal LAMP and mail server running GNOME. All OK.

User Icon evillagr commented & provided feedback 6 years ago
karma

work fine

This update has reached the stable karma threshold and will be pushed to the stable updates repository

6 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/103916/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

6 years ago

This update has been pushed to stable

6 years ago

Please login to add feedback.

Metadata
Type
security
Karma
5
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
6 years ago
in testing
6 years ago
in stable
6 years ago
BZ#1238231 CVE-2015-5352 openssh: XSECURITY restrictions bypass under certain conditions in ssh(1)
0
0
BZ#1238238 openssh: weakness of agent locking (ssh-add -x) to password guessing
0
0
BZ#1238241 openssh: various flaws [fedora-all]
0
0
BZ#1238253 openssh-6.9p1 is available
0
0

Automated Test Results

Test Cases

0 0 Test Case OpenSSH