Release date:
2026-04-30 11:13:51 UTC
Description:
- CVE-2026-35385: clear setuid/setgid bits when downloading files as root
in scp legacy (-O) mode without the -p flag
Updated packages:
-
openssh-8.7p1-45.el9.tuxcare.els4.x86_64.rpm
sha:02a595d8129dd09b447b08246ea5a46bb2c29a2e6d212ade7e6f019fa8167d95
-
openssh-askpass-8.7p1-45.el9.tuxcare.els4.x86_64.rpm
sha:8ff6fa0300d3db318ec6f5ccf4546c9f6f7f3e68030bd431d214937233c43029
-
openssh-clients-8.7p1-45.el9.tuxcare.els4.x86_64.rpm
sha:2d69d5ecf335f7dac47e436c644d9840e3c91765372f2fb77178aa5e7aea4dc1
-
openssh-keycat-8.7p1-45.el9.tuxcare.els4.x86_64.rpm
sha:10639fe660f7e4092abf9e302b6ca84568419b3920811ad8034386cdbc43f422
-
openssh-server-8.7p1-45.el9.tuxcare.els4.x86_64.rpm
sha:b8f4dc81be422db8d44166c48dc21d2c7404b0f9d4b7fcf151e3ff56ec065293
-
openssh-sk-dummy-8.7p1-45.el9.tuxcare.els4.x86_64.rpm
sha:7df2b1ab2cbcc3c0ab460507a47be5d732aad5a7420b06294fb23824b14c3d21
-
pam_ssh_agent_auth-0.10.4-5.45.el9.tuxcare.els4.x86_64.rpm
sha:5130a7d6073990f8459d26dede9b066c71eacd77bb9d3f0337c568d3a64344a0
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
