{ "schema_version": "1.7.0", "id": "RHSA-2025:23481", "related": [], "upstream": [ "CVE-2025-61984", "CVE-2025-61985" ], "published": "2025-12-18T10:09:28Z", "modified": "2026-06-03T10:13:45Z", "summary": "Red Hat Security Advisory: openssh security update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "affected": [ { "package": { "name": "openssh", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-askpass", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-askpass" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-askpass-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-askpass-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-cavs", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-cavs" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-cavs-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-cavs-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-clients", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-clients" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-clients-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-clients-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-debugsource", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-keycat", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-keycat" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-keycat-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-keycat-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-ldap", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-ldap" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-ldap-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-ldap-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-server", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-server" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-server-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/openssh-server-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "pam_ssh_agent_auth", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/pam_ssh_agent_auth" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.10.3-7.27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "pam_ssh_agent_auth-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::appstream", "purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.10.3-7.27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-askpass", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-askpass" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-askpass-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-askpass-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-cavs", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-cavs" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-cavs-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-cavs-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-clients", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-clients" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-clients-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-clients-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-debugsource", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-keycat", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-keycat" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-keycat-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-keycat-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-ldap", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-ldap" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-ldap-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-ldap-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-server", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-server" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "openssh-server-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/openssh-server-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.0p1-27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "pam_ssh_agent_auth", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/pam_ssh_agent_auth" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.10.3-7.27.el8_10" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "pam_ssh_agent_auth-debuginfo", "ecosystem": "Red Hat:enterprise_linux:8::baseos", "purl": "pkg:rpm/redhat/pam_ssh_agent_auth-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.10.3-7.27.el8_10" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2025:23481" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401960" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2401962" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23481.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2025-61984" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2025-61984" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61984" }, { "type": "ARTICLE", "url": "https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2" }, { "type": "ARTICLE", "url": "https://www.openssh.com/releasenotes.html#10.1p1" }, { "type": "ARTICLE", "url": "https://www.openwall.com/lists/oss-security/2025/10/06/1" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2025-61985" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2025-61985" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61985" } ] }