openssh-askpass-8.7p1-43.el9> M Mv ĉJ4!!%joLne)Ip-Bm5 ']g){releng@rockylinux.org p-Bm5 ']&t].0bhGB&z ] S0JHe8VvPQH1J0F?fPXVCZRJp,% T_$8vSNw)QpsN%egQPN:ͰCDI`heN!R_ێLVzb*J>|ʞW͸XP3BbX)jᜭ<'~]f2` לaiFF)fѳP`j5R| #x<`+dDqI>8^!0#=.=8SuS?"rX݊@'zqID -өWrX ;^Sgx۵uߝ:D1'=x/w8=E,D埪"p%x7˺}%~eo `b5 bvn"#X*YmDsQOfnf oY:p ^`4A| jC5d01d467525657a3ff96bdcafe05754480ed1bde38b127b4acfa85a5915b6870fb21490eb0894b2996e2bc30ccbc313f153078a9@>xכK^KMh>=#A?#1d  E48Hmq   $ @  PlX(&80!9!: ?!GTHpIXY\]^Qbd e f!l!t!u!8v!Tw"<x"Xy"t """""Copenssh-askpass8.7p143.el9A passphrase dialog for OpenSSH and XOpenSSH is a free version of SSH (Secure SHell), a program for logging into and executing commands on a remote machine. This package contains an X11 passphrase dialog for OpenSSH.g)pb-a9d44074-72c7-442f-95ed-dcc4208b36d9-b-aarch64 bRocky Linux 9.5Rocky Enterprise Software FoundationBSDRocky Linux Build System (Peridot) Unspecifiedhttp://www.openssh.com/portable.htmllinuxaarch64:F1 AAg)ig)ig)kg)kg)kg)jg)i8f138fd7caf5183aed0d2085c1f7d1746255d890ba26409084d4882c0b59880ad5ce176b494616eb798d5465a616e046eaa06ec513bf32314a2211a9b3b080bf58a335a6b553e634652366d209694faf93916685ca3ff485127a09ad2eb6c275../../../../usr/libexec/openssh/gnome-ssh-askpassgnome-ssh-askpassrootrootrootrootrootrootrootrootrootrootrootrootrootrootopenssh-8.7p1-43.el9.src.rpmopenssh-askpassopenssh-askpass(aarch-64)@@@@@@@@@@    @ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libX11.so.6()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.34)(64bit)libgdk-x11-2.0.so.0()(64bit)libglib-2.0.so.0()(64bit)libgobject-2.0.so.0()(64bit)libgtk-x11-2.0.so.0()(64bit)opensshrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsZstd)rtld(GNU_HASH)8.7p1-43.el93.0.4-14.6.0-14.0-15.4.18-14.16.1.3f&@ff]@f3@f(@e@e@e@e6`@d!dZ@dm@dcp@dA)@d.@c@c@c @c]c-c,N@bbb@bVb@b@b@b@bγbb@bbDmitry Belyavskiy - 8.7p1-43Dmitry Belyavskiy - 8.7p1-42Dmitry Belyavskiy - 8.7p1-41Zoltan Fridrich - 8.7p1-40Dmitry Belyavskiy - 8.7p1-39Dmitry Belyavskiy - 8.7p1-38Dmitry Belyavskiy - 8.7p1-37Dmitry Belyavskiy - 8.7p1-36Dmitry Belyavskiy - 8.7p1-35Dmitry Belyavskiy - 8.7p1-34Dmitry Belyavskiy - 8.7p1-33Norbert Pocs - 8.7p1-32Norbert Pocs - 8.7p1-31Dmitry Belyavskiy - 8.7p1-30Dmitry Belyavskiy - 8.7p1-29Dmitry Belyavskiy - 8.7p1-28Zoltan Fridrich - 8.7p1-27Dmitry Belyavskiy - 8.7p1-26Dmitry Belyavskiy - 8.7p1-25Dmitry Belyavskiy - 8.7p1-24Dmitry Belyavskiy - 8.7p1-23Dmitry Belyavskiy - 8.7p1-22Dmitry Belyavskiy - 8.7p1-21Zoltan Fridrich - 8.7p1-20 + 0.10.4-5Dmitry Belyavskiy - 8.7p1-19 + 0.10.4-5Zoltan Fridrich - 8.7p1-18Dmitry Belyavskiy - 8.7p1-17Zoltan Fridrich - 8.7p1-16Dmitry Belyavskiy - 8.7p1-15Dmitry Belyavskiy - 8.7p1-14Zoltan Fridrich - 8.7p1-13Dmitry Belyavskiy - 8.7p1-12Zoltan Fridrich - 8.7p1-11- Possible remote code execution due to a race condition (CVE-2024-6409) Resolves: RHEL-45741- Possible remote code execution due to a race condition (CVE-2024-6387) Resolves: RHEL-45348- Fix ssh multiplexing connect timeout processing Resolves: RHEL-37748- Correctly audit hostname and IP address Resolves: RHEL-22316 - Make default key sizes configurable in sshd-keygen Resolves: RHEL-26454- Use FIPS-compatible API for key derivation Resolves: RHEL-32809- Fix Terrapin attack Resolves: CVE-2023-48795- Fix Terrapin attack Resolves: CVE-2023-48795- Fix Terrapin attack Resolves: CVE-2023-48795 - Relax OpenSSH build-time checks for OpenSSL version Related: RHEL-4734 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385- Relax OpenSSH checks for OpenSSL version Resolves: RHEL-4734 - Limit artificial delays in sshd while login using AD user Resolves: RHEL-2469 - Move users/groups creation logic to sysusers.d fragments Resolves: RHEL-5222- Avoid remote code execution in ssh-agent PKCS#11 support Resolves: CVE-2023-38408- Allow specifying validity interval in UTC Resolves: rhbz#2115043- Fix pkcs11 issue with the recent changes - Delete unnecessary log messages from previous compl-dh patch - Add ssh_config man page explanation on rhbz#2068423 - Resolves: rhbz#2207793, rhbz#2209096- Fix minor issues with openssh-8.7p1-evp-fips-compl-dh.patch: - Check return values - Use EVP API to get the size of DH - Add some log debug lines - Related: rhbz#2091694- Some non-terminating processes were listening on ports. Resolves: rhbz#2177768 - On sshd startup, we check whether signing using the SHA1 for signing is available and don't use it when it isn't. - On ssh private key conversion we explicitly use SHA2 for testing RSA keys. - In sshd, when SHA1 signatures are unavailable, we fallback (fall forward :) ) to SHA2 on host keys proof confirmation. - On a client side we permit SHA2-based proofs from server when requested SHA1 proof (or didn't specify the hash algorithm that implies SHA1 on the client side). It is aligned with already present exception for RSA certificates. - We fallback to SHA2 if SHA1 signatures is not available on the client side (file sshconnect2.c). - We skip dss-related tests (they don't work without SHA1). Resolves: rhbz#2070163 - FIPS compliance efforts for dh, ecdh and signing Resolves: rhbz#2091694- Resolve possible self-DoS with some clients Resolves: rhbz#2186473- Do not try to use SHA1 for host key ownership proof when we don't support it server-side Resolves: rhbz#2088750- Add sk-dummy subpackage for test purposes Resolves: rhbz#2092780- Fix one-byte overflow in SSH banner processing Resolves: rhbz#2138345 - Fix double free() in error path Resolves: rhbz#2138347- Build fix after OpenSSL rebase Resolves: rhbz#2153626- Set minimal value of RSA key length via configuration option - support both names Resolves: rhbz#2128352- Set minimal value of RSA key length via configuration option Resolves: rhbz#2128352- Avoid spirous message on connecting to the machine with ssh-rsa keys Related: rhbz#2115246 - Set minimal value of RSA key length via configuration option Related: rhbz#2066882- IBMCA workaround Related: rhbz#1976202- Fix openssh-8.7p1-scp-clears-file.patch Related: rhbz#2056884- FIX pam_ssh_agent_auth auth for RSA keys Related: rhbz#2070113- Fix new coverity issues Related: rhbz#2068423- Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Don't propose disallowed algorithms during hostkey negotiation Resolves: rhbz#2068423- Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Add reference for policy customization in ssh/sshd_config manpages Resolves: rhbz#1984575- Disable sntrup761x25519-sha512 in FIPS mode Related: rhbz#2070628 - Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Fix scp clearing file when src and dest are the same Resolves: rhbz#2056884 - Add missing options from ssh_config into ssh manpage Resolves: rhbz#2033372 - Fix several memory leaks Related: rhbz#2068423 - Fix gssapi authentication failures Resolves: rhbz#2091023 - Fix host-based authentication with rsa keys Resolves: rhbz#20889168.7p1-43.el98.7p1-43.el9gnome-ssh-askpass.cshgnome-ssh-askpass.sh.build-id5db95df7eeebdbec77ac2143ad180dfe721e65b1gnome-ssh-askpassssh-askpass/etc/profile.d//usr/lib//usr/lib/.build-id//usr/lib/.build-id/5d//usr/libexec/openssh/-O2 -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpiozstd19aarch64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB pie executable, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=5db95df7eeebdbec77ac2143ad180dfe721e65b1, for GNU/Linux 3.7.0, stripped RRRR RRRRRRRutf-88008fd49c38d5b93953949c405a819d947a2a6068c5ae1e2e7c49cda910715f74089915970b92ea12715b6c74ab34f85a6dc6d29dd4e9eca268e1afa1bd6472e?0(/h ?O)yfs}gځ!2/x 7tl Q)볓)Og;Zny}TpݦhwSZ}JZ'>4q\Mq .>mRHi^goiO3~L2:Ts::٠m<{oxmTΧUjNGS6sSΣ7N-vSz6=9m\?yٜhgm#j6>ې lU=ojN弖imr:4]sݜ߮g3z:5Tќ㳞m姧͙I+8S0u6!2_w/p)!ϵy06R=7 _7sрF@;ߨrVw&6%<wU֭L\/?EFm?_#B G*F!kЙ7[z"΍UWR'>QhU~kτ=$e6;mGrz:#}?o[YS󈜳G6h }ϙ 9圱t٤i jJTH*(9[J usZWF*UTT4z뭮6M4ݬRx^Ɣa'ƔX|f:4w|s4ϣhێJ=8UʩRƫLuE5uYG$1=h4鹀ū_ wkK ݿKog?9Z2B+mU~k=\Mtxș{c ssm˕]Ya ,kgze/9cK&j?vޔ\e Sšok~)13׎ݕr6 }ozjW/5V&BdqT6^?+GE!<|`v2y/>]^n~5#~ǿg'^QfߺfkR |1r!,VM3"]vաx(-"h/Lف!G.I[J ȃbY㫲o%5@2M P ɢ:Z phoٺtD oi)p<6 uȊ_Z~ _FbI`FBv'/;`8yA|a"'\UyB˜&IXA1wo!i-$3s{|$7Bk \(}vHJi[`21ph"+s(Npҙ!gk,Μls[Ӿ wMbY)Z0-#•mk3t^49wdue-lkLZFWxQt_xE!D0\RWKZ8/dE\E uEsPpW<uz#"?3^$.tG/./sDk1%+szKz?MH9G#z/~諮^m ?%ř;YqqwJ_H~oJQ᥼kl ڿ&k'Pv#::3g,~y?z}$_9 1-엗+Kf ]p@:'[qnJi =t8m` D K@\M;;q# Y#ڴ:▚ 2UEY cq1Ejg%m$4F˔BzY 8~AM^P6ۆڑ~ |d9tirchADn ̶Y4QRj^a.pMPOX\kfTG$2EH>((*#ђR؍ѲYmG٬` aЮPLӳ:.uEEjeGXވ<,_l\W ab]uK,wXhƷ>Giϱ^Zj]DcnqԮtlfw=fOgi4gsn4|jzJqZ3~Θnƺ4Zy-ezj1-X9OOit:wYKciM2U~}>u۷fx o'3,:q)5gj56f1^⮏Ϋr)uy #OqT;it>k % y L>ڿ ȖbkCM,DW,ك]a]2RCe7TMD>L`H>/M ť\~(IHF0O^DKfxh&q--ܺkbQ R)V]dao= -Ў#- yڶYOz(.E$}P]:vxpTH b&A-qM0g6*F{50yvB]OT#@厉mJh $Q6riQzikK"ÙXtR,6D@f8k1{)aj gl:-k;DoB$-7&#|X%%E$mB. IY zk9Ka ^ Aq&KTC0m"pzQ46+)Qt` =BZ=$ Y2HAdž$X`aF H"wTiQEɛ'nw2ɓ`i2w5pVc؝R?5جr(U\pW#AK4p`AJ T̬YaGlzxAa@j()0F:# b#' oC%C2-11yj/61!,4[ &miC=8R\pA P3=~`fIv 6C!>4hAǏP],="=e mpm)5wR٭~> ܰL88]B$ ZQM:{LH ׍xg1KVQÌڐ+QFv4~o$.{T|Hmu}N&[<ɳ0g ss4d^lBDzd޷{ z nMVڑ'43Cgr["ͲrEeŀ*%_F8uzVx\y~ڿє#vFbQ1u?D~# ?"/2900]Ie%"n}yh1}&$/鞃!} ;w;_(|uGV7׎O!WI\ckZv4%VٽpO29y69 CS!nwP̡p:y[ABoΧ! fmI0["o^1Ep x`Bs>0:h;qcb~d7~[ŋ%BJW6\v80~yX{ʭhd帆kyxhXݜ>t`u! 7 \Lf&B u)V%1 T}RAԁj"Uo 9#uUMXkX̨"ta'gN\t VF=k/d̤įIw͊t6I48)Q0 0X4cʒ N\:,8DX2!Up)dV)a!)*I a ix.gD3]\j=c0 ,a֑Skǒ 8UG.MA 7B\ӽ|nqκ&(0HRw1j˥s=H̜=XJG7F|8@#Dw&ہ}^8\p]UcL gE>ڳy$a .O0_Wf^/Ni nW.Z&B?+ͤ[