Recommended update for openssh
SUSE Recommended Update: Recommended update for openssh
This performs key derivation using OpenSSL's SSHKDF facility, which allows OpenSSH to benefit from the former's FIPS certification status.
This key derivation function uses FIPS 140-2 certified algorithms.
| Announcement ID: | SUSE-RU-2020:0581-1 |
| Rating: | moderate |
| References: | #1161997 |
| Affected Products: |
|
An update that has one recommended fix can now be installed.
Description:
This update for openssh fixes the following issues:
- Switch to use the openssl "SSH" Key Derivation Function (SSH KDF) (jsc#SLE-9443 bsc#1161997).
This performs key derivation using OpenSSL's SSHKDF facility, which allows OpenSSH to benefit from the former's FIPS certification status.
This key derivation function uses FIPS 140-2 certified algorithms.
Patch Instructions:
To install this SUSE Recommended Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server for SAP 15:
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2020-581=1 - SUSE Linux Enterprise Server 15-LTSS:
zypper in -t patch SUSE-SLE-Product-SLES-15-2020-581=1 - SUSE Linux Enterprise Module for Server Applications 15:
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-2020-581=1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15:
zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2020-581=1 - SUSE Linux Enterprise Module for Desktop Applications 15:
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-2020-581=1 - SUSE Linux Enterprise Module for Basesystem 15:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-2020-581=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2020-581=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2020-581=1
Package List:
- SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64):
- openssh-7.6p1-9.32.1
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- openssh-fips-7.6p1-9.32.1
- openssh-helpers-7.6p1-9.32.1
- openssh-helpers-debuginfo-7.6p1-9.32.1
- SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x):
- openssh-7.6p1-9.32.1
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- openssh-fips-7.6p1-9.32.1
- openssh-helpers-7.6p1-9.32.1
- openssh-helpers-debuginfo-7.6p1-9.32.1
- SUSE Linux Enterprise Module for Server Applications 15 (aarch64 ppc64le s390x x86_64):
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- openssh-fips-7.6p1-9.32.1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (aarch64 ppc64le s390x x86_64):
- openssh-cavs-7.6p1-9.32.1
- openssh-cavs-debuginfo-7.6p1-9.32.1
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- SUSE Linux Enterprise Module for Desktop Applications 15 (aarch64 ppc64le s390x x86_64):
- openssh-askpass-gnome-7.6p1-9.32.1
- openssh-askpass-gnome-debuginfo-7.6p1-9.32.1
- SUSE Linux Enterprise Module for Basesystem 15 (aarch64 ppc64le s390x x86_64):
- openssh-7.6p1-9.32.1
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- openssh-helpers-7.6p1-9.32.1
- openssh-helpers-debuginfo-7.6p1-9.32.1
- SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64):
- openssh-7.6p1-9.32.1
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- openssh-fips-7.6p1-9.32.1
- openssh-helpers-7.6p1-9.32.1
- openssh-helpers-debuginfo-7.6p1-9.32.1
- SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64):
- openssh-7.6p1-9.32.1
- openssh-debuginfo-7.6p1-9.32.1
- openssh-debugsource-7.6p1-9.32.1
- openssh-fips-7.6p1-9.32.1
- openssh-helpers-7.6p1-9.32.1
- openssh-helpers-debuginfo-7.6p1-9.32.1
SAPソリューションにはSUSE
パブリッククラウド
Security
