Release date:
2025-03-20 11:58:36 UTC
Description:
* SECURITY UPDATE: it's possible machine-in-the-middle attack vulnerability
caused by a malicious machine impersonating a legitimate server
- debian/patches/CVE-2025-26465.patch: Correct error code handling
- CVE-2025-26465
Updated packages:
-
openssh-client_7.6p1-4ubuntu0.7+tuxcare.els6_amd64.deb
sha:d1cf56e8a8ebfaa5efc962cbe30d756389637e16
-
openssh-server_7.6p1-4ubuntu0.7+tuxcare.els6_amd64.deb
sha:53b0cf4cf2f84be66c09e183427822436033c7db
-
openssh-sftp-server_7.6p1-4ubuntu0.7+tuxcare.els6_amd64.deb
sha:e084a4ab7309d985221b251369d5a0afa8b9ae34
-
ssh_7.6p1-4ubuntu0.7+tuxcare.els6_all.deb
sha:05b5959d1ce073aef14fae265085b87a82246334
-
ssh-askpass-gnome_7.6p1-4ubuntu0.7+tuxcare.els6_amd64.deb
sha:c49a9100f51782f4badd1b4c2d6616fb772a4faa
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
