AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.

 View Only

  • 1.  Need CVE fixes for OpenSSH 9.9

    Posted 22 days ago

    A security scanning tool is flagging OpenSSH for:
    CVE-2025-26465 - https://www.openssh.com/releasenotes.html#9.9p2
    CVE-2025-26466 - https://www.openssh.com/releasenotes.html#9.9p2
    CVE-2025-32728 - https://www.openssh.com/txt/release-10.0

    The latest OpenSSH from MRS is 9.9 p1. lslpp shows as 9.9.3015.1000.



    ------------------------------
    Alexander Pettitt
    ------------------------------


  • 2.  RE: Need CVE fixes for OpenSSH 9.9

    Posted 22 days ago

    Please apply ifix as mentioned in : https://aix.software.ibm.com/aix/efixes/security/openssh_advisory18.asc



    ------------------------------
    Sandeep Umesh
    ------------------------------

    Original Message


  • 3.  RE: Need CVE fixes for OpenSSH 9.9

    Posted 22 days ago

    I see that we have the ifix from https://aix.software.ibm.com/aix/efixes/security/openssh_advisory19.asc

    I am going to close this out as a tooling issue as this is an external scan and it is keyed off the reported version of openssh which showing as OpenSSH_9.9.

    Thanks.



    ------------------------------
    Alexander Pettitt
    ------------------------------

    Original Message


Related Content