openssh-keycat-8.7p1-43.el9> M Mv ĉJ4!!%joLne)Ip-Bm5 ']g)}releng@rockylinux.org p-Bm5 ']`@-UݯsyjJ_Ks>sv_ 涭E`f8lR,]G6.Lc͢y48gV ~7qq1)[lh&4b~A48Q%Ә"bIM"WȗD`x\pQ3+pƒD,:<.0BR3pN:.ulG?dUIj#.+?n#:k-M2U $+¤~=8:I'i*ʞ;\yXo 'ۋK}|;ڥPeؼ)4]lpGĒF*Țr*c  N[MpLz KQ)h7cHA޻!UiWA*(@,Yg Vܬ4#(:f] {85KF$ዩٮ _$M8:iF)7)ΐ-cr<{MYA13.,N{48853cb04577db45bfa1102638b10d60d36421e7614dd174b8e76de694297ce9b28431eb740cc1a96da3e6fd8a2a61bf6a3a2694GʫH.e>=$?$ d  ?  LX}     :XtI(8!9 !: !GHIXY \4]P^b @d!e!f!l!t!u"v"w#x#y#8#|####Copenssh-keycat8.7p143.el9A mls keycat backend for opensshOpenSSH mls keycat is backend for using the authorized keys in the openssh in the mls mode.g)pb-464b0cff-2081-4d53-8057-a8f5a47a65b8-b-x86-64`Rocky Linux 9.5Rocky Enterprise Software FoundationBSDRocky Linux Build System (Peridot) Unspecifiedhttp://www.openssh.com/portable.htmllinuxx86_64U*]ȁAAA큤g)Eg)Fg)Fg)Fg)Fg)Fg)010e60034729e34223da00495b544c41d7fb7a6b75455bec748d7990afb8b09088bba0a4e58e43bbc3980bbefcd8bcfac0e649a9a36b2d7b7f5706fc6fbe47553dcb91e3e897c6675060638507344fe70603d164a7b2ace552aaf5d2c69d3f32../../../../usr/libexec/openssh/ssh-keycatrootrootrootrootrootrootrootrootrootrootrootrootrootrootopenssh-8.7p1-43.el9.src.rpmconfig(openssh-keycat)openssh-keycatopenssh-keycat(x86-64)@@@@@@@@@@@@@@@@    @config(openssh-keycat)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.26)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.33)(64bit)libc.so.6(GLIBC_2.34)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.8)(64bit)libcrypt.so.2()(64bit)libcrypto.so.3()(64bit)libpam.so.0()(64bit)libpam.so.0(LIBPAM_1.0)(64bit)libselinux.so.1()(64bit)libz.so.1()(64bit)opensshrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsZstd)rtld(GNU_HASH)8.7p1-43.el98.7p1-43.el93.0.4-14.6.0-14.0-15.4.18-14.16.1.3f&@ff]@f3@f(@e@e@e@e6`@d!dZ@dm@dcp@dA)@d.@c@c@c @c]c-c,N@bbb@bVb@b@b@b@bγbb@bbDmitry Belyavskiy - 8.7p1-43Dmitry Belyavskiy - 8.7p1-42Dmitry Belyavskiy - 8.7p1-41Zoltan Fridrich - 8.7p1-40Dmitry Belyavskiy - 8.7p1-39Dmitry Belyavskiy - 8.7p1-38Dmitry Belyavskiy - 8.7p1-37Dmitry Belyavskiy - 8.7p1-36Dmitry Belyavskiy - 8.7p1-35Dmitry Belyavskiy - 8.7p1-34Dmitry Belyavskiy - 8.7p1-33Norbert Pocs - 8.7p1-32Norbert Pocs - 8.7p1-31Dmitry Belyavskiy - 8.7p1-30Dmitry Belyavskiy - 8.7p1-29Dmitry Belyavskiy - 8.7p1-28Zoltan Fridrich - 8.7p1-27Dmitry Belyavskiy - 8.7p1-26Dmitry Belyavskiy - 8.7p1-25Dmitry Belyavskiy - 8.7p1-24Dmitry Belyavskiy - 8.7p1-23Dmitry Belyavskiy - 8.7p1-22Dmitry Belyavskiy - 8.7p1-21Zoltan Fridrich - 8.7p1-20 + 0.10.4-5Dmitry Belyavskiy - 8.7p1-19 + 0.10.4-5Zoltan Fridrich - 8.7p1-18Dmitry Belyavskiy - 8.7p1-17Zoltan Fridrich - 8.7p1-16Dmitry Belyavskiy - 8.7p1-15Dmitry Belyavskiy - 8.7p1-14Zoltan Fridrich - 8.7p1-13Dmitry Belyavskiy - 8.7p1-12Zoltan Fridrich - 8.7p1-11- Possible remote code execution due to a race condition (CVE-2024-6409) Resolves: RHEL-45741- Possible remote code execution due to a race condition (CVE-2024-6387) Resolves: RHEL-45348- Fix ssh multiplexing connect timeout processing Resolves: RHEL-37748- Correctly audit hostname and IP address Resolves: RHEL-22316 - Make default key sizes configurable in sshd-keygen Resolves: RHEL-26454- Use FIPS-compatible API for key derivation Resolves: RHEL-32809- Fix Terrapin attack Resolves: CVE-2023-48795- Fix Terrapin attack Resolves: CVE-2023-48795- Fix Terrapin attack Resolves: CVE-2023-48795 - Relax OpenSSH build-time checks for OpenSSL version Related: RHEL-4734 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385- Relax OpenSSH checks for OpenSSL version Resolves: RHEL-4734 - Limit artificial delays in sshd while login using AD user Resolves: RHEL-2469 - Move users/groups creation logic to sysusers.d fragments Resolves: RHEL-5222- Avoid remote code execution in ssh-agent PKCS#11 support Resolves: CVE-2023-38408- Allow specifying validity interval in UTC Resolves: rhbz#2115043- Fix pkcs11 issue with the recent changes - Delete unnecessary log messages from previous compl-dh patch - Add ssh_config man page explanation on rhbz#2068423 - Resolves: rhbz#2207793, rhbz#2209096- Fix minor issues with openssh-8.7p1-evp-fips-compl-dh.patch: - Check return values - Use EVP API to get the size of DH - Add some log debug lines - Related: rhbz#2091694- Some non-terminating processes were listening on ports. Resolves: rhbz#2177768 - On sshd startup, we check whether signing using the SHA1 for signing is available and don't use it when it isn't. - On ssh private key conversion we explicitly use SHA2 for testing RSA keys. - In sshd, when SHA1 signatures are unavailable, we fallback (fall forward :) ) to SHA2 on host keys proof confirmation. - On a client side we permit SHA2-based proofs from server when requested SHA1 proof (or didn't specify the hash algorithm that implies SHA1 on the client side). It is aligned with already present exception for RSA certificates. - We fallback to SHA2 if SHA1 signatures is not available on the client side (file sshconnect2.c). - We skip dss-related tests (they don't work without SHA1). Resolves: rhbz#2070163 - FIPS compliance efforts for dh, ecdh and signing Resolves: rhbz#2091694- Resolve possible self-DoS with some clients Resolves: rhbz#2186473- Do not try to use SHA1 for host key ownership proof when we don't support it server-side Resolves: rhbz#2088750- Add sk-dummy subpackage for test purposes Resolves: rhbz#2092780- Fix one-byte overflow in SSH banner processing Resolves: rhbz#2138345 - Fix double free() in error path Resolves: rhbz#2138347- Build fix after OpenSSL rebase Resolves: rhbz#2153626- Set minimal value of RSA key length via configuration option - support both names Resolves: rhbz#2128352- Set minimal value of RSA key length via configuration option Resolves: rhbz#2128352- Avoid spirous message on connecting to the machine with ssh-rsa keys Related: rhbz#2115246 - Set minimal value of RSA key length via configuration option Related: rhbz#2066882- IBMCA workaround Related: rhbz#1976202- Fix openssh-8.7p1-scp-clears-file.patch Related: rhbz#2056884- FIX pam_ssh_agent_auth auth for RSA keys Related: rhbz#2070113- Fix new coverity issues Related: rhbz#2068423- Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Don't propose disallowed algorithms during hostkey negotiation Resolves: rhbz#2068423- Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Add reference for policy customization in ssh/sshd_config manpages Resolves: rhbz#1984575- Disable sntrup761x25519-sha512 in FIPS mode Related: rhbz#2070628 - Disable ed25519 and ed25519-sk keys in FIPS mode Related: rhbz#2087915- Fix scp clearing file when src and dest are the same Resolves: rhbz#2056884 - Add missing options from ssh_config into ssh manpage Resolves: rhbz#2033372 - Fix several memory leaks Related: rhbz#2068423 - Fix gssapi authentication failures Resolves: rhbz#2091023 - Fix host-based authentication with rsa keys Resolves: rhbz#20889168.7p1-43.el98.7p1-43.el98.7p1-43.el9ssh-keycat.build-id436641520a346f8634cbb159ebeb644ffceb8e6bssh-keycatopenssh-keycatHOWTO.ssh-keycat/etc/pam.d//usr/lib//usr/lib/.build-id//usr/lib/.build-id/43//usr/libexec/openssh//usr/share/doc//usr/share/doc/openssh-keycat/-O2 -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -march=x86-64-v2 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpiozstd19x86_64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB pie executable, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=436641520a346f8634cbb159ebeb644ffceb8e6b, for GNU/Linux 3.2.0, strippedRRRR R RRRRRR R RR RRRutf-8d8f6ae9823033450cd678e9f0f569017abab78263c79cb0b94f252d2ddac5d518798bb78ab6da945268c7f42f57105f1e154f18863e0ecacddd53d60f3fc045a?0(/hE*RaQM/VqE `z.BtE尪y%xo2BF)}H'6 ʆӔ%82 IDz 34?uβ3uFl/R2N(Hf֊dRoQG|QlL/ 2$=dQ"o^>pL'9^1N̦T\F>~ttE.V?:ѲYʪS:\ox0%uHLm6,Cˎ|DS/ګr2;o|29@`l%<؋?e&n?jZE&=@8`/ydԔxC!()Zu8iP5EFb[̇كO  U ;.V'% Os6bT2rv h}~@ER/W"`^.#b b$|+j1dhMH-gAGKUԆf!%Ay!iX'%yݑKM8$g6D 9/?>;\(H`$oJm!~1l39> q _{[%o4{8@~I=;Fb8&1GHO%#USӯdqͿck޹]`/x7bη`~n޽f`/_ **\?ߊVכ;a3m^v;J-+7JcV]kl6K]\qjFkn]/Wj |XjՖu0虭G.>بCvZҔ`@ؘE Д&-4%|`&?'cs3vo$3/1JUe.+*ڈřHJDJO1"$9J`}6~7 T(6]QfibsP A.;|= "O|4ibIEEL*O}ffJrZW#g4Jr"))GUlYEGHEKG-խ"[u$%D2ka.VW;Jo\nszޜǬ4\7;z׋݂y4ou7xsu0nqoJcW7^i/ӻ[Si&ITU_y:v xV]󻈹LJB:bb2ZRr"UϦsd[E f dT! 3Oxr|1͈80(.}%IƕkĄ1x?pPIqχߡ?HL;xt{&q[,+ϡws G}3m|gƵqo7a3<ŜI)=x'8 C:$ND |4ȐH» N?#a1e8o$WbAiV=qⓂӪkfCk"Dfx(2$2 9{̂ yFrKK{cR?rP9r%" $C -ue V:'Un:g%mK$k"hK!Ce!w5!!w\ћBҤЈ{ -~R&I}C/ůSčPv|9um,wl?g^n!Epv5}W@x K`bXvWo_O~eNF!@qٞW\1gg*4>q,sCOv黐 F1I_C=L'Cl(Q:3LQ5NE)2_^#Cv_^$w{.@rP~NO'ӥ0l.SۧOby)<<\5^Uv&"qM+P!g8 ]Eqci%dj"cmd E ;ҭZ͖KI^pu`q z 쥄qdD~ $ btݣۏ װ F#MخU{ 636( 0(̹7B#1}Ͳ/sNvëm!i4ȃV{3י(@1T d Я8d,Wr~sY<{}.#!{3'f#EN IF@1QO~uIJ8GuVQTӀgg$&R]ޥ`) 4^oov)W-'MN9}fK2ZB9쑽O{B{b ]hreazϷ#6PnH< YL.Mᆄeq"Xe9؞ܐ0'aԤͯ}.7$z n!6 ى8Gbyt\#;w}BhŞmo$v}S3b3.q) #X-p P@Y剕#%1+mi1Y2ɃbNgvMg4`M"/'ޙCb€#@MURP"2r8(8!'C]y^2VG2-0qOQ{sݽ$/|jW{eBm&0 +=6m](`E +%e'ESxͶ0&xt`wҒE<C &MW_~p 1[f_`ӭ7DUz17]b>5TN;rZ I'~ߝ]m -qE7~c_ {@٣!B9B+;A6(lj87LCxA4?U?D_5=B+}a˞RAq5HQKծ*P]VjqpʆV@kjG( hҟ#OqJQQ9fgͣ-tԢVZA4+k3z=?ݑg0ֺEuX?ƠpZ1a1jQAh n@;R刟Ǭy{C2} }(Q b> c-t4hbЬ =ԲLEP (WظEmLcXrTpYɷ5blಚ9S--XA&Ȏ+.SL? y^0Dg2> Bz#Ioˑ5 & 4]#]ҋ!gk`Y$/A=Ǟ 80|j>k\1 ȭY]9Q1Mun=C$ % |I>^(zH*8H*/  KhM^J ~:͒Gd3/v8474yO;V}IK(2FEz9ʾdž׼6wu0Ye"o03?L>`3͘,:aCR/Lg"jg8\i,mo0;1 >.O y\ A %Ò&Hnf>5\ i!#>h֬>h(75j^H g'Fѻ,G09V "C +, i[dj|ͧ4Ot씘䉏W9dgpx&{p<,QUXzo,S, :ƈ[ mӫJCwh]ZP5A7 \6SrpyVL~\Qs VGFs7#Ū5(z/ 5/zce˂8` s]I[~X˻I[QEEfX8bavѯ,7^{Rjc1q}3݇j+9݋{ fV?{lMHL;2j66~cn=S$ ϼ&yF| <)ד/-e:Ug47yq m A'F׈6:`Z,EKpYSP.6)L )Ej }Nl1u}+9v'X)*7 KyU- 1XsAA1X 1ew)r wHؐ*IAti$Z(yU]A& Ӝ\G=H д`FF& '|bZ1?q]+O(iKb^>uS1*7i %I ;jvaJ: 4atD̪p@NS--[Y\8P:eB u@zQ(՗ 2!&5+C^>[(`ܩVi#@Sr&xP4t @"|^#zHQtRcȲWH?P.pCmi6_Xv.Wh, Xp2sCbaF+uK"kzuF#TW6>cr>i>?/NƁ.OM8Ǭe;ke,"\SS@OJBiG!Y%HWB`Gf%/{g=v wzʔEX,~OȫUzHs@rՀA%FJb1fl,/7S#W@LueJ#1QFW8X;+T v\@2D>24;cDczÉO8 ?ړ('2v_y}iozѮkW–+/:Ez1mq5ܸoC}jnP;հ c} :Tp7nc}TnX>|`]?ꊯ,F0stF0gxflDFxlhgpf Oʭ,ٕ]ݶŵzY5y"/cNއ& +6_NB&ݻ"gxf0׷m?~M.@V[Q ~ /:8*W>->w"^Xw`3?&DC{[N=2ש#’MaҜVX-KK