applications/internet

Jump to letter: [ ABCEFGHIJLMNOPRSTUVWXY ]

openssh - An open source implementation of SSH protocol versions 1 and 2

Website: http://www.openssh.com/portable.html
License: BSD
Vendor: AnNyung Packaging Team
Description:
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine. SSH is intended to replace rlogin and
rsh, and to provide secure encrypted communications between two
untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.

OpenSSH is OpenBSD's version of the last free version of SSH, bringing
it up to date in terms of security and features.

This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both.

Packages

openssh-7.4p1-23.an3.src [2.7 MiB] Changelog by Dmitry Belyavskiy (2023-07-20): 
- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408
openssh-7.4p1-22.an3.src [2.7 MiB] Changelog by Dmitry Belyavskiy (2021-09-30): 
- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)
openssh-7.4p1-21.an3.src [2.7 MiB] Changelog by JoungKyun.Kim (2019-08-25): 
- update for 7.7
  . Avoid double comma in the default cipher list in FIPS mode (#1722446)
  . Revert the updating of cached passwd structure (#1712053)
  . Update cached passwd structure after PAM authentication (#1674541)
  . invalidate supplemental group cache used by temporarily_use_uid()
    when the target uid differs (#1583735)
  . Enable GCM mode for AES ciphers in FIPS mode (#1600869)
- security issues
  . CVE-2018-15473 (#1619079)
openssh-7.4p1-16.an3.src [2.7 MiB] Changelog by Jakub Jelen (2017-11-24): 
- Fix for CVE-2017-15906 (#1517226)
openssh-7.4p1-13.an3.src [2.7 MiB] Changelog by Jakub Jelen (2017-09-13): 
- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)
openssh-7.4p1-12.an3.src [2.7 MiB] Changelog by Jakub Jelen (2017-08-07): 
- Revert upstream change to UseDNS=no back to yes (#1478175)
openssh-7.4p1-11.an3.src [2.7 MiB] Changelog by JoungKyun.Kim (2017-08-20): 
- applies CentOS 7.4 release
  . Rebase to openssh 7.4 and pam_ssh_agent_auth 0.10.3 (#1341754)
  . detach -cavs subpackage
  . enable seccomp filter for sandboxed child
  . Fix coverity scan results
  . Adjust FIPS algorithms list (#1420910)
  . Revert problematic feature for chroot(#1418062)
  . Fix CBC weakness in released OpenSSH 7.5
  . Do not completely disable SHA-1 key exchange methods in FIPS (#1324493)
  . Remove wrong coverity patches
  . Update seccomp filter to work on ppc64le (#1443916)
  . Fix the default key exchange proposal in FIPS mode (#1438414)
  . Remove another wrong coverity chunk to unbreak gsskex (#1438414)
  . ControlPath too long should not be a fatal error (#1447561)
  . Fix multilib issue in documentation (#1450361)
  . Allow harmless syscalls for s390 crypto modules (#1451809)
  . Add missing messages in FIPS mode (#1341754)
  . Compiler warnings (#1341754)
openssh-6.6.1p1-35.an3.src [1.7 MiB] Changelog by Jakub Jelen (2017-03-01): 
- Do not send SD_NOTIFY from forked childern (#1381997)
openssh-6.6.1p1-33.an3.src [1.7 MiB] Changelog by Jakub Jelen (2016-12-19): 
- Restore login with large MOTD (#1404018)
openssh-6.6.1p1-31.an3.src [1.7 MiB] Changelog by Jakub Jelen (2016-09-06): 
- Do not depend on selinux-policy (#1373297)
openssh-6.6.1p1-25.an3.1.src [1.7 MiB] Changelog by JoungKyun.Kim (2016-11-14): 
- security issues
  . CVE-2015-8325
    privilege escalation via user's PAM environment and UseLogin=yes (#1329191)
openssh-6.6.1p1-25.an3.src [1.7 MiB] Changelog by Jakub Jelen (2016-03-16): 
- CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding (#1298741)
openssh-6.6.1p1-23.an3.src [1.7 MiB] Changelog by Jakub Jelen (2016-01-13): 
- Disable undocumented feauture Roaming for good (#1298218)
- prevents CVE-2016-0777 and CVE-2016-0778
openssh-6.6.1p1-22.an3.src [1.7 MiB] Changelog by JoungKyun.Kim (2015-09-25): 
- rebuilt on AnNyung
- removed X option
- change server configuration
  change KeyRegenerationInterval value to 0 on sshd_config
  change UseDNS value to no
  change GSSAPIAuthentication to no
  change X11Forwarding no
  add Banner directive to /etc/issue.net
  add USER_LANG environment
- change client configuration
  change GSSAPIAuthentication value to no
  change ForwardX11Trusted no
  add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
openssh-6.6.1p1-12.an3.src [1.7 MiB] Changelog by JoungKyun.Kim (2015-08-31): 
- rebuilt on AnNyung
- removed X option
- change server configuration
  change KeyRegenerationInterval value to 0 on sshd_config
  change UseDNS value to no
  change GSSAPIAuthentication to no
  change X11Forwarding no
  add Banner directive to /etc/issue.net
  add USER_LANG environment
- change client configuration
  change GSSAPIAuthentication value to no
  change ForwardX11Trusted no
  add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option
openssh-6.4p1-8.an3.src [1.6 MiB] Changelog by JoungKyun.Kim (2014-10-22): 
- rebuilt on AnNyung
- removed X option
- change server configuration
  change KeyRegenerationInterval value to 0 on sshd_config
  change UseDNS value to no
  change GSSAPIAuthentication to no
  change X11Forwarding no
  add Banner directive to /etc/issue.net
  add USER_LANG environment
- change client configuration
  change GSSAPIAuthentication value to no
  change ForwardX11Trusted no
  add USER_LANG on SendEnv
- support mcookie on Banner file
- support idn client
- add skip host key check command lien option

Listing created by Repoview-0.6.6-4.el7