SUSE-SU-2016:2281-1 -- SLES opensshID: oval:org.secpod.oval:def:89045311 | Date: (C)2021-08-03 (M)2022-12-21 |
Class: PATCH | Family: unix |
This update for openssh fixes the following issues: - CVE-2016-6210: Prevent user enumeration through the timing of password processing [-prevent_timing_user_enumeration] - Allow lowering the DH groups parameter limit in server as well as when GSSAPI key exchange is used - CVE-2016-6515: Limiting the accepted password length to prevent possible DoS Bug fixes: - avoid complaining about unset DISPLAY variable
Platform: |
SUSE Linux Enterprise Server 11 SP4 |