Re: OpenSSH advisory

From: Chris Ess (azarinat_private)
Date: Wed Jun 26 2002 - 10:14:50 PDT

Next message: Remington Winters: "Re: DoS_Browser"

Previous message: Michal Zalewski: "RE: OpenSSH Vulns (new?) Priv seperation"
In reply to: Jan Gruber: "OpenSSH advisory"
Next in thread: Daniel Harrison: "Re: OpenSSH advisory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> I stumbled across a debian advisory about OpenSSH.
>
> http://www.debian.org/security/2002/dsa-134
>
> I cant find anything more detailed about this issue, does anyone have
> further information ?

A copy of ISS's advisory is here:
http://online.securityfocus.com/archive/1/278818/2002-06-23/2002-06-29/0

Also, OpenSSH 3.4p1 is out which contains a fix to the bug but I've only
seen it on ftp.openbsd.org

Hope this helps.


Chris Ess
System Administrator / CDTT (Certified Duct Tape Technician)

Next message: Remington Winters: "Re: DoS_Browser"
Previous message: Michal Zalewski: "RE: OpenSSH Vulns (new?) Priv seperation"
In reply to: Jan Gruber: "OpenSSH advisory"
Next in thread: Daniel Harrison: "Re: OpenSSH advisory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jun 26 2002 - 21:30:31 PDT