Forum Stats

  • 3,855,318 Users
  • 2,264,499 Discussions
  • 7,905,968 Comments

Discussions

Latest OpenSSH version supported in Oracle Linux 7.9

User_OG00H
User_OG00H Member Posts: 1 Green Ribbon

What is the maximum/latest OpenSSH version supported in Oracle Linux 7.9? Much appreciate the earliest response. Thanks.

Answers

  • David Gilpin-Oracle
    David Gilpin-Oracle Principal Product Manager, Oracle Linux and Virtualization Frisco, TXPosts: 52 Employee

    Oracle Linux 7 - like other Enterprise Linux distros - tends to keep major versions of components stable. Security and bugfixes are backported from more modern versions of utilities. Just because the version number from the upstream project site is "higher" does NOT mean that the version that ships with Enterprise Linux is vulnerable, as long as you have updated to the latest version available from the distribution vendor.

    The latest version that I see is openssh-7.4p1-22.0.1.el7_9.x86_64.rpm

    It is available on yum.oracle.com in the Oracle Linux 7 "latest" channel.

    Read the "changelog" in that RPM to see the patches that have been applied to it.

  • User_GWWR0
    User_GWWR0 Member Posts: 2 Green Ribbon

    hii,

    i am using oracle 7.9 with Openssh 7.4 and i am getting the below vulnerabilities please guide.

    OPENSSH 7.4 affected by multiple vulnerabilities: - CVE-2016-10708,CVE-2017-15906,CVE-2016-10011 and It's also may miss list of security patchs.

    The recommendation is to upgrade openssh version from 7.4 to 8.9/8.9pl.


    Kindly update ASAP....

  • User_GWWR0
    User_GWWR0 Member Posts: 2 Green Ribbon

    hii,

    i am using oracle 7.9 with Openssh 7.4 and i am getting the below vulnerabilities please guide.

    OPENSSH 7.4 affected by multiple vulnerabilities: - CVE-2016-10708,CVE-2017-15906,CVE-2016-10011 and It's also may miss list of security patchs.

    The recommendation is to upgrade openssh version from 7.4 to 8.9/8.9pl.


    Kindly update ASAP....

  • user10174131
    user10174131 Member Posts: 40 Blue Ribbon

    You can build tinyssh and use it instead.

    It implements only the best-practice ciphers.

    https://tinyssh.org/

    Alternately, a run of "yum update" might bring you a patched OpenSSH server. Your CVEs date from 2016, so I don't think you are on 7.9 (which was released on 2020-10-07).