SUSE-RU-2019:13939-1: important: Recommended update for openssh

sle-updates at lists.suse.com sle-updates at lists.suse.com
Thu Jan 31 10:09:10 MST 2019


   SUSE Recommended Update: Recommended update for openssh
______________________________________________________________________________

Announcement ID:    SUSE-RU-2019:13939-1
Rating:             important
References:         #1123028 
Affected Products:
                    SUSE Linux Enterprise Server 11-SP4
                    SUSE Linux Enterprise Debuginfo 11-SP4
______________________________________________________________________________

   An update that has one recommended fix can now be installed.

Description:

   This update for openssh fixes the following issues:

   - A previously applied security patch unintendedly changed the behavior of
     OpenSSH's "scp" utility such that server-side brace expansion would no
     longer be supported. Attempts to copy a set files from a remote machine
     to the local
     one by running "scp 'remote:{file-a,file-b}' /tmp" would fail. This
      change in behavior broke Corosync and, potentially, many user scripts
      that relied on brace expansion. [bsc#1123028]


Patch Instructions:

   To install this SUSE Recommended Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Server 11-SP4:

      zypper in -t patch slessp4-openssh-13939=1

   - SUSE Linux Enterprise Debuginfo 11-SP4:

      zypper in -t patch dbgsp4-openssh-13939=1



Package List:

   - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64):

      openssh-6.6p1-36.15.1
      openssh-askpass-gnome-6.6p1-36.15.1
      openssh-fips-6.6p1-36.15.1
      openssh-helpers-6.6p1-36.15.1

   - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64):

      openssh-askpass-gnome-debuginfo-6.6p1-36.15.1
      openssh-debuginfo-6.6p1-36.15.1
      openssh-debugsource-6.6p1-36.15.1


References:

   https://bugzilla.suse.com/1123028



More information about the sle-updates mailing list