CLSA-2026-1777307655

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1777307655

Upstream

CVE-2026-35414

Published

2026-04-27T16:34:19Z

Modified

2026-06-01T00:32:38.163674926Z

Summary

openssh: Fix of CVE-2026-35414

Details

CVE-2026-35414: fix incorrect matching of principals in the authorized_keys principals="..." option when a certificate principal contains a comma character

References

https://errata.tuxcare.com/els_os/centos8.4els/CLSA-2026-1777307655.html

Affected packages

TuxCare:CentOS:8.4

openssh

Package

Name: openssh
Purl: pkg:rpm/tuxcare/openssh?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

openssh-askpass

Package

Name: openssh-askpass
Purl: pkg:rpm/tuxcare/openssh-askpass?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

openssh-cavs

Package

Name: openssh-cavs
Purl: pkg:rpm/tuxcare/openssh-cavs?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

openssh-clients

Package

Name: openssh-clients
Purl: pkg:rpm/tuxcare/openssh-clients?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

openssh-keycat

Package

Name: openssh-keycat
Purl: pkg:rpm/tuxcare/openssh-keycat?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

openssh-ldap

Package

Name: openssh-ldap
Purl: pkg:rpm/tuxcare/openssh-ldap?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

openssh-server

Package

Name: openssh-server
Purl: pkg:rpm/tuxcare/openssh-server?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0p1-6.el8_4.2.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"

pam_ssh_agent_auth

Package

Name: pam_ssh_agent_auth
Purl: pkg:rpm/tuxcare/pam_ssh_agent_auth?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.10.3-7.6.el8_4.1.tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1777307655.json"