install with Common Criteria role gives error after packages install step MFA message w/out prompt fails to display via ssh [SELinux] mls policy: check if we need the ssh-keycat patch ssh x11 forwarding unusably slow L3: SSH client segfaults in ssh_kex2() — ref:_00D1igLOd._500TrSpsZM:ref VUL-0: CVE-2025-26465: openssh,openssh8.4: MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client VUL-0: CVE-2025-26466: openssh,openssh8.4: DoS attack against OpenSSH's client and server alarrosa important security

Security update for openssh

This update for openssh fixes the following issues: Security issues fixed: - CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client (bsc#1237040) - CVE-2025-26466: Fixed a DoS attack against OpenSSH's client and server (bsc#1237041) Other issues fixed: - Fix ssh client segfault with GSSAPIKeyExchange=yes in ssh_kex2 due to gssapi proposal not being correctly initialized (bsc#1236826). - Add a patch to fix a regression introduced in 9.6 that makes X11 forwarding very slow. (bsc#1229449) - Fixed RFC4256 implementation so that keyboard-interactive authentication method can send instructions and sshd shows them to users even before a prompt is requested. This fixes MFA push notifications (bsc#1229010). - Fix a dbus connection leaked in the logind patch that was missing a sd_bus_unref call - Add a patch that fixes a small memory leak when parsing the subsystem configuration option: - Remove empty line at the end of sshd-sle.pamd (bsc#1227456) openssh openssh:openssh-askpass-gnome