SUSE-SU-2021:0022-1

UNKNOWN

Security update for openssh

Published Jan 5, 2021

Modified 5 years ago

Fix available

Details

This update for openssh fixes the following issues:

CVE-2020-14145: Fixed a potential information leak during host key exchange (bsc#1173513).

Affected Packages

openssh

SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server 12 SP3-BCL

Fixed in:

7.2p2-74.57.1

openssh-askpass-gnome

SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server 12 SP3-BCL

Fixed in:

7.2p2-74.57.1

openssh-fips

SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server 12 SP3-BCL

Fixed in:

7.2p2-74.57.1

openssh-helpers

SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP2-LTSSSUSE Linux Enterprise Server 12 SP3-BCL

Fixed in:

7.2p2-74.57.1

References

REPORT

https://bugzilla.suse.com/1173513

WEB

https://www.suse.com/security/cve/CVE-2020-14145

ADVISORY

https://www.suse.com/support/update/announcement/2021/suse-su-20210022-1/

Upstream

CVE-2020-14145

Ecosystems(11)

SUSE Enterprise Storage 5 SUSE HPE Helion OpenStack 8 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3-BCL

Timeline

PublishedJan 5, 2021

ModifiedJan 5, 2021

SUSE-SU-2021:0022-1 | Mondoo Vulnerability Intelligence