applications/internet

Jump to letter: [ ABCDEFGHIJLMNOPRSTUVX ]

openssh - An open source implementation of SSH protocol versions 1 and 2

Website: http://www.openssh.com/portable.html
License: BSD
Vendor: AnNyung Packaging Team
Description:
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine. SSH is intended to replace rlogin and
rsh, and to provide secure encrypted communications between two
untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.

OpenSSH is OpenBSD's version of the last free version of SSH, bringing
it up to date in terms of security and features.

This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both.

Packages

openssh-7.4p1-23.an3.x86_64 [510 KiB] Changelog by Dmitry Belyavskiy (2023-07-20): 
- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408
openssh-7.4p1-22.an3.x86_64 [510 KiB] Changelog by Dmitry Belyavskiy (2021-09-30): 
- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)
openssh-7.4p1-21.an3.x86_64 [510 KiB] Changelog by JoungKyun.Kim (2019-08-25): 
- update for 7.7
  . Avoid double comma in the default cipher list in FIPS mode (#1722446)
  . Revert the updating of cached passwd structure (#1712053)
  . Update cached passwd structure after PAM authentication (#1674541)
  . invalidate supplemental group cache used by temporarily_use_uid()
    when the target uid differs (#1583735)
  . Enable GCM mode for AES ciphers in FIPS mode (#1600869)
- security issues
  . CVE-2018-15473 (#1619079)
openssh-7.4p1-16.an3.x86_64 [509 KiB] Changelog by Jakub Jelen (2017-11-24): 
- Fix for CVE-2017-15906 (#1517226)
openssh-7.4p1-13.an3.x86_64 [509 KiB] Changelog by Jakub Jelen (2017-09-13): 
- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)
openssh-7.4p1-12.an3.x86_64 [508 KiB] Changelog by Jakub Jelen (2017-08-07): 
- Revert upstream change to UseDNS=no back to yes (#1478175)
openssh-7.4p1-11.an3.x86_64 [509 KiB] Changelog by JoungKyun.Kim (2017-08-20): 
- applies CentOS 7.4 release
  . Rebase to openssh 7.4 and pam_ssh_agent_auth 0.10.3 (#1341754)
  . detach -cavs subpackage
  . enable seccomp filter for sandboxed child
  . Fix coverity scan results
  . Adjust FIPS algorithms list (#1420910)
  . Revert problematic feature for chroot(#1418062)
  . Fix CBC weakness in released OpenSSH 7.5
  . Do not completely disable SHA-1 key exchange methods in FIPS (#1324493)
  . Remove wrong coverity patches
  . Update seccomp filter to work on ppc64le (#1443916)
  . Fix the default key exchange proposal in FIPS mode (#1438414)
  . Remove another wrong coverity chunk to unbreak gsskex (#1438414)
  . ControlPath too long should not be a fatal error (#1447561)
  . Fix multilib issue in documentation (#1450361)
  . Allow harmless syscalls for s390 crypto modules (#1451809)
  . Add missing messages in FIPS mode (#1341754)
  . Compiler warnings (#1341754)
openssh-6.6.1p1-35.an3.x86_64 [436 KiB] Changelog by Jakub Jelen (2017-03-01): 
- Do not send SD_NOTIFY from forked childern (#1381997)
openssh-6.6.1p1-33.an3.x86_64 [436 KiB] Changelog by Jakub Jelen (2016-12-19): 
- Restore login with large MOTD (#1404018)
openssh-6.6.1p1-31.an3.x86_64 [436 KiB] Changelog by Jakub Jelen (2016-09-06): 
- Do not depend on selinux-policy (#1373297)
openssh-6.6.1p1-25.an3.1.x86_64 [433 KiB] Changelog by JoungKyun.Kim (2016-11-14): 
- security issues
  . CVE-2015-8325
    privilege escalation via user's PAM environment and UseLogin=yes (#1329191)
openssh-6.6.1p1-25.an3.x86_64 [433 KiB] Changelog by Jakub Jelen (2016-03-16): 
- CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding (#1298741)
openssh-6.6.1p1-23.an3.x86_64 [868 KiB] Changelog by Jakub Jelen (2016-01-13): 
- Disable undocumented feauture Roaming for good (#1298218)
- prevents CVE-2016-0777 and CVE-2016-0778
openssh-6.6.1p1-22.an3.x86_64 [867 KiB] Changelog by JoungKyun.Kim (2015-09-25): 
- rebuilt on AnNyung
- removed X option
- change server configuration
  change KeyRegenerationInterval value to 0 on sshd_config
  change UseDNS value to no
  change GSSAPIAuthentication to no
  change X11Forwarding no
  add Banner directive to /etc/issue.net
  add USER_LANG environment
- change client configuration
  change GSSAPIAuthentication value to no
  change ForwardX11Trusted no
  add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
openssh-6.6.1p1-12.an3.x86_64 [863 KiB] Changelog by JoungKyun.Kim (2015-08-31): 
- rebuilt on AnNyung
- removed X option
- change server configuration
  change KeyRegenerationInterval value to 0 on sshd_config
  change UseDNS value to no
  change GSSAPIAuthentication to no
  change X11Forwarding no
  add Banner directive to /etc/issue.net
  add USER_LANG environment
- change client configuration
  change GSSAPIAuthentication value to no
  change ForwardX11Trusted no
  add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
openssh-6.4p1-8.an3.x86_64 [700 KiB] Changelog by JoungKyun.Kim (2014-10-22): 
- rebuilt on AnNyung
- removed X option
- change server configuration
  change KeyRegenerationInterval value to 0 on sshd_config
  change UseDNS value to no
  change GSSAPIAuthentication to no
  change X11Forwarding no
  add Banner directive to /etc/issue.net
  add USER_LANG environment
- change client configuration
  change GSSAPIAuthentication value to no
  change ForwardX11Trusted no
  add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option

Listing created by Repoview-0.6.6-4.el7