Описание
Security update for openssh
This update for openssh fixes the following issues:
- CVE-2020-14145: Fixed an observable discrepancy leading to an information leak in the algorithm negotiation (bsc#1173513).
- Fixed an issue where AuthorizedKeysCommand produced a lot of output (bsc#1161684).
- Fixed an issue where oracle cluster with cluvfy using 'scp' failing/missinterpreted (bsc#1148566).
Список пакетов
Image SLES12-SP4-Azure-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-EC2-HVM-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-GCE-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-OCI-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-Azure
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-Azure-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-EC2-HVM
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-EC2-HVM-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-GCE
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-GCE-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP4-SAP-OCI-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP5-OCI-BYOS-BYOS
openssh-7.2p2-78.10.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
openssh-7.2p2-78.10.1
SUSE Linux Enterprise Server 12 SP4-LTSS
openssh-7.2p2-78.10.1
openssh-askpass-gnome-7.2p2-78.10.1
openssh-fips-7.2p2-78.10.1
openssh-helpers-7.2p2-78.10.1
SUSE Linux Enterprise Server 12 SP5
openssh-7.2p2-78.10.1
openssh-askpass-gnome-7.2p2-78.10.1
openssh-fips-7.2p2-78.10.1
openssh-helpers-7.2p2-78.10.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
openssh-7.2p2-78.10.1
openssh-askpass-gnome-7.2p2-78.10.1
openssh-fips-7.2p2-78.10.1
openssh-helpers-7.2p2-78.10.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
openssh-7.2p2-78.10.1
openssh-askpass-gnome-7.2p2-78.10.1
openssh-fips-7.2p2-78.10.1
openssh-helpers-7.2p2-78.10.1
SUSE OpenStack Cloud 9
openssh-7.2p2-78.10.1
openssh-askpass-gnome-7.2p2-78.10.1
openssh-fips-7.2p2-78.10.1
openssh-helpers-7.2p2-78.10.1
SUSE OpenStack Cloud Crowbar 9
openssh-7.2p2-78.10.1
openssh-askpass-gnome-7.2p2-78.10.1
openssh-fips-7.2p2-78.10.1
openssh-helpers-7.2p2-78.10.1
Ссылки
- Link for SUSE-SU-2020:3844-1
- E-Mail link for SUSE-SU-2020:3844-1
- SUSE Security Ratings
- SUSE Bug 1148566
- SUSE Bug 1161684
- SUSE Bug 1173513
- SUSE CVE CVE-2020-14145 page
Описание
The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
Затронутые продукты
Image SLES12-SP4-Azure-BYOS:openssh-7.2p2-78.10.1
Image SLES12-SP4-EC2-HVM-BYOS:openssh-7.2p2-78.10.1
Image SLES12-SP4-GCE-BYOS:openssh-7.2p2-78.10.1
Image SLES12-SP4-OCI-BYOS:openssh-7.2p2-78.10.1
Ссылки
- CVE-2020-14145
- SUSE Bug 1173513
- SUSE Bug 1177569
- SUSE Bug 1189078