Red Hat Product Errata RHSA-2026:25063 - Security Advisory Issued: 2026-06-10 Updated: 2026-06-10 RHSA-2026:25063 - Security Advisory Overview Updated Packages Synopsis Important: openssh security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for openssh is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fix(es): OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode (CVE-2026-35385) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64 Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386 Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x Fixes BZ - 2454469 - CVE-2026-35385 OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode CVEs CVE-2026-35385 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 SRPM openssh-5.3p1-125.el6_10.1.src.rpm SHA-256: 8e8d72af3bdb197a9de1e7d812185294d12560cd68b5b529946590e46527f545 x86_64 openssh-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: bba08955c84138e64e50efd31b00d1d659f5b0237edc7daef13e32ae8b2f3146 openssh-askpass-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: efcecd5e35b3446d92b3a740fc6c9c5fb8eb1906583199ff2ea35cd006590ff6 openssh-clients-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: ea7472c0f883d91f21de8f2eb4c191c61832cad32123102da1babf743aa4aeed openssh-debuginfo-5.3p1-125.el6_10.1.i686.rpm SHA-256: 895ddfc246ce6ecadf9f9322f56bbe670fce97106317eda11ae950ac20b8e7ee openssh-debuginfo-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: 10cb932ce9b125aba6b6b8cf4cd8613c8242c5910b6dab01239d4823ef9630f8 openssh-debuginfo-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: 10cb932ce9b125aba6b6b8cf4cd8613c8242c5910b6dab01239d4823ef9630f8 openssh-ldap-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: 7319273cfd84aad3165b33f93448a150325949cbdb95c289dc22ee8fd15843da openssh-server-5.3p1-125.el6_10.1.x86_64.rpm SHA-256: 2a24d3fdbb978828143480a40b7b0690915756485af57ad9fea20cfd9bd75cd1 pam_ssh_agent_auth-0.9.3-125.el6_10.1.i686.rpm SHA-256: abbdfd029f61a4444d7e28692d47e73274aa691e9091635de4cb5d007ff6e6cd pam_ssh_agent_auth-0.9.3-125.el6_10.1.x86_64.rpm SHA-256: 6fb553ce231d6a94ad9aa2c4d845b40849e5f378f6117b43f8144484964ca70a i386 openssh-5.3p1-125.el6_10.1.i686.rpm SHA-256: c79373c31c5ceb858086c69999cfee31a50514b423ce9d6731abc0ea67c0cf3c openssh-askpass-5.3p1-125.el6_10.1.i686.rpm SHA-256: b98b133f9ddd35d2c99d179d8fe42388e420185403496e83d12be97a2c2fb29b openssh-clients-5.3p1-125.el6_10.1.i686.rpm SHA-256: fa28c5c5c1431a745ab38676079f3a64c0f73c2cf8a03b5962f51878eec762aa openssh-debuginfo-5.3p1-125.el6_10.1.i686.rpm SHA-256: 895ddfc246ce6ecadf9f9322f56bbe670fce97106317eda11ae950ac20b8e7ee openssh-debuginfo-5.3p1-125.el6_10.1.i686.rpm SHA-256: 895ddfc246ce6ecadf9f9322f56bbe670fce97106317eda11ae950ac20b8e7ee openssh-ldap-5.3p1-125.el6_10.1.i686.rpm SHA-256: ec0adc6cb6c17485b54a6d02feb52467ca8405df153de87ad0b2b309d9d3dee3 openssh-server-5.3p1-125.el6_10.1.i686.rpm SHA-256: 8dcccaf86ed3788d78a961fccc64fe3b0ceeba77da22ae4b4a482d67d718c2cf pam_ssh_agent_auth-0.9.3-125.el6_10.1.i686.rpm SHA-256: abbdfd029f61a4444d7e28692d47e73274aa691e9091635de4cb5d007ff6e6cd Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 SRPM openssh-5.3p1-125.el6_10.1.src.rpm SHA-256: 8e8d72af3bdb197a9de1e7d812185294d12560cd68b5b529946590e46527f545 s390x openssh-5.3p1-125.el6_10.1.s390x.rpm SHA-256: 82aface0c464b91a0b9d0372146fadd94e94c96f8b3239740f1c7027e0110cef openssh-askpass-5.3p1-125.el6_10.1.s390x.rpm SHA-256: dfa11a2b07f255d018c0c3d89da238fccc8e58a337729e31d393fb18918cbd2b openssh-clients-5.3p1-125.el6_10.1.s390x.rpm SHA-256: 23e7b5e1791ae514f951a24b05dcde27e7c1cdc9064413137c1f496bf2bb1da7 openssh-debuginfo-5.3p1-125.el6_10.1.s390.rpm SHA-256: 02926b936a2750fbdcc2e3f3e6f0196fd86e19181e232634664c7d4b6bfd3581 openssh-debuginfo-5.3p1-125.el6_10.1.s390x.rpm SHA-256: 8211b658b05055de58dab9cd36d4368c281b4e677d0ec16d506c5ea2acbf03d1 openssh-debuginfo-5.3p1-125.el6_10.1.s390x.rpm SHA-256: 8211b658b05055de58dab9cd36d4368c281b4e677d0ec16d506c5ea2acbf03d1 openssh-ldap-5.3p1-125.el6_10.1.s390x.rpm SHA-256: 19fa7678a76bddf401c47a27cc7bf2a0fa5dbdf291946bc8d03d83901165715e openssh-server-5.3p1-125.el6_10.1.s390x.rpm SHA-256: c55eeac0e7d118340b946e98affa9cbef39cb7ec470b35f87ee2466ccac2eaf1 pam_ssh_agent_auth-0.9.3-125.el6_10.1.s390.rpm SHA-256: 0313f6f523e1d86b67b6bdda24f7b80956984bc8e96cc61aa6de5576d80a9146 pam_ssh_agent_auth-0.9.3-125.el6_10.1.s390x.rpm SHA-256: 3d5e8fd8568253230e267e4467405a66297bfcab7a7c7bd0721f90f270507a81 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .