Red Hat Product Errata RHSA-2026:13750 - Security Advisory Issued: 2026-05-05 Updated: 2026-05-05 RHSA-2026:13750 - Security Advisory Overview Updated Packages Synopsis Important: openssh security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for openssh is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fix(es): openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables (CVE-2026-3497) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x Fixes BZ - 2447085 - CVE-2026-3497 openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables CVEs CVE-2026-3497 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 SRPM openssh-8.7p1-13.el9_0.2.src.rpm SHA-256: e449544041068d75d14de00d7776284043537c98deedc9c6c41a94784e5f5838 ppc64le openssh-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 35ac143063fb95f90ab6139aca526f8f9702e3ffffa2361800c29fe0d349bcb1 openssh-askpass-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 50f9c7e9f69466c0b2630f811115c7651fb837a98e87763333518614ecfe1174 openssh-askpass-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: c47f5843ddec91dc1797545d0c768c3ace05c14b23216fa91d04e40e08489fa7 openssh-askpass-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: c47f5843ddec91dc1797545d0c768c3ace05c14b23216fa91d04e40e08489fa7 openssh-clients-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 35c304d17b1a863fdc59eeda68ff51b2e9b94b76cc5f4737e864023a359a2b60 openssh-clients-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 6f38f2a837230f662c13a0a5a3bd9e103470b08ce79ba1b394cb67141f7a528d openssh-clients-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 6f38f2a837230f662c13a0a5a3bd9e103470b08ce79ba1b394cb67141f7a528d openssh-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 6c2150293df20b7c695bb9a766f730965a04898f1d3137017583c9839b27d1c1 openssh-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 6c2150293df20b7c695bb9a766f730965a04898f1d3137017583c9839b27d1c1 openssh-debugsource-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 015fd0799f92bb202c7a91540364f4a4d17ab86d5f9a2af1606b78247a492c44 openssh-debugsource-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 015fd0799f92bb202c7a91540364f4a4d17ab86d5f9a2af1606b78247a492c44 openssh-keycat-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: e7a1622caf879f28d793d6275934fbf552b1de165f8edc073a45fb2640f9211f openssh-keycat-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 550a41656cd849750752efeef71bd4d8f4ef4ea49169fb064ecc527a97955a9f openssh-keycat-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 550a41656cd849750752efeef71bd4d8f4ef4ea49169fb064ecc527a97955a9f openssh-server-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 68221ffef04956956b3c873dd63c06139490b5c2e7ceb93415d7a7727177e9b6 openssh-server-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 1d31f03cd3e60f16ca98c36d3e3a67534e06431936c4f9cd81e3cd54f8266ac7 openssh-server-debuginfo-8.7p1-13.el9_0.2.ppc64le.rpm SHA-256: 1d31f03cd3e60f16ca98c36d3e3a67534e06431936c4f9cd81e3cd54f8266ac7 pam_ssh_agent_auth-0.10.4-4.13.el9_0.5.ppc64le.rpm SHA-256: d78d5b5b75113cb350abe647a559deee0050df23edf59c905c366951e40d4078 pam_ssh_agent_auth-debuginfo-0.10.4-4.13.el9_0.5.ppc64le.rpm SHA-256: 61973eb6a024d280d73393af443e7414f33a34b0799610b71d7cc80bc7b8059e pam_ssh_agent_auth-debuginfo-0.10.4-4.13.el9_0.5.ppc64le.rpm SHA-256: 61973eb6a024d280d73393af443e7414f33a34b0799610b71d7cc80bc7b8059e Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 SRPM openssh-8.7p1-13.el9_0.2.src.rpm SHA-256: e449544041068d75d14de00d7776284043537c98deedc9c6c41a94784e5f5838 x86_64 openssh-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: b0a9f499ca71b086c7abb343e8d4f71a0178ff6dd03f8884e6b239c9789ad405 openssh-askpass-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 84b8d1d9d758bd5d860855e067763942f830addb91ea7de14b6f0d6769bba6c8 openssh-askpass-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 0060d6a208b8219f345de7e873d538ca5c7b98483100ec17d1ce2ba0f132d2aa openssh-askpass-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 0060d6a208b8219f345de7e873d538ca5c7b98483100ec17d1ce2ba0f132d2aa openssh-clients-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 492a009446986dd0915e3efe9d4b506c76b7768168d9541cad95d2b79eb44aeb openssh-clients-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: cbdd273725071339daeda6e96e7513e350e891712595b048a11694cbb5338ad4 openssh-clients-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: cbdd273725071339daeda6e96e7513e350e891712595b048a11694cbb5338ad4 openssh-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 0dc4e2170d93fe31a66f1d48b16114c16cb0f9150058e85f58151a530b63ed8e openssh-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 0dc4e2170d93fe31a66f1d48b16114c16cb0f9150058e85f58151a530b63ed8e openssh-debugsource-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: e8f8c6905561a495693f6d6ae0412a577f55068a17e369d20395586d1ce8b79a openssh-debugsource-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: e8f8c6905561a495693f6d6ae0412a577f55068a17e369d20395586d1ce8b79a openssh-keycat-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: befcb4409de2dabc654456d6bdd87bf315c3d21c43fc18a1a0bfb88c4405f70c openssh-keycat-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: caef6c09b62aeb70cdc46123cd0354359c8b96f106970ad2d3032b78870a89b1 openssh-keycat-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: caef6c09b62aeb70cdc46123cd0354359c8b96f106970ad2d3032b78870a89b1 openssh-server-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 39b9024fea2f930ceadbcf42fd6cc9f871ad21c450fefbad48d4c5377d2f046b openssh-server-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 4d2ff0ace19b27930ea9ad628daf173f5497a187ae30e3cd47f15ed07a69ddcb openssh-server-debuginfo-8.7p1-13.el9_0.2.x86_64.rpm SHA-256: 4d2ff0ace19b27930ea9ad628daf173f5497a187ae30e3cd47f15ed07a69ddcb pam_ssh_agent_auth-0.10.4-4.13.el9_0.5.x86_64.rpm SHA-256: 0874342bb5626e60713e9b20791fb8a82fce528d02d4a7e081cec73d3d9717e4 pam_ssh_agent_auth-debuginfo-0.10.4-4.13.el9_0.5.x86_64.rpm SHA-256: d831b7182bfa2a7a0a4aa68eee8e12adc24d7d50c2e13456524dd4fb5e40ec68 pam_ssh_agent_auth-debuginfo-0.10.4-4.13.el9_0.5.x86_64.rpm SHA-256: d831b7182bfa2a7a0a4aa68eee8e12adc24d7d50c2e13456524dd4fb5e40ec68 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 SRPM openssh-8.7p1-13.el9_0.2.src.rpm SHA-256: e449544041068d75d14de00d7776284043537c98deedc9c6c41a94784e5f5838 aarch64 openssh-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 54cd92272199b28133d32809d74463dbb6b17c2f856b6021db0b5dd0f32c6c29 openssh-askpass-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 835c2f62833f87e795eafd52b660a487bb2bb71942c53e07cd955c6295dcd24e openssh-askpass-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 121cc5a1316805931b83f84b5f315f9610f54acbbd7915d1688c53db31617dcb openssh-askpass-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 121cc5a1316805931b83f84b5f315f9610f54acbbd7915d1688c53db31617dcb openssh-clients-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: f80c63f922b5e49d40b49b8724cbc5339374b533d60b919a98b7612ce013ffb8 openssh-clients-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 61c861010c4699449484dfd1e42d5b9e3e9a751421944ef9c972df678bb2108f openssh-clients-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 61c861010c4699449484dfd1e42d5b9e3e9a751421944ef9c972df678bb2108f openssh-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 725a9b0f5c19c98c0a68cd4c7cda8b85150406f8cd032068822dd7cdff8effa5 openssh-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 725a9b0f5c19c98c0a68cd4c7cda8b85150406f8cd032068822dd7cdff8effa5 openssh-debugsource-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 0592159bc1236712a73e7fa25155687d985585c2faf4140d363a23b7aec53dbe openssh-debugsource-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 0592159bc1236712a73e7fa25155687d985585c2faf4140d363a23b7aec53dbe openssh-keycat-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: ed31669dbdc61c2c5fbce267931d52c097b39d2a807e70000accd364a4edd260 openssh-keycat-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 444aed47396645c82a8666a5e54008ee63ae9bc80faff15cf2d571e3839b8e2c openssh-keycat-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 444aed47396645c82a8666a5e54008ee63ae9bc80faff15cf2d571e3839b8e2c openssh-server-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 5f51ef17898b8a0789c47585c3c94c485f82b6662c445e594d853fc2b9a8fecc openssh-server-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 15c635ba45941c3f7e290ca0837354b4a1cc62cf735460b17163424e81528613 openssh-server-debuginfo-8.7p1-13.el9_0.2.aarch64.rpm SHA-256: 15c635ba45941c3f7e290ca0837354b4a1cc62cf735460b17163424e81528613 pam_ssh_agent_auth-0.10.4-4.13.el9_0.5.aarch64.rpm SHA-256: 47919f8801fad47699870ab9bec34acf6757041c84d5fa1dfc7f3bc1d9d42e48 pam_ssh_agent_auth-debuginfo-0.10.4-4.13.el9_0.5.aarch64.rpm SHA-256: cebf93866dcadf8d9a8daf1b2074b976b362e2155f09d52e52fc91c