Re: OpenSSH not using libssl?

From: Michael Nottebrock (michaelnottebrock@gmx.net)
Date: 07/31/02

• Next message: Duncan Patton a Campbell is Dhu: "Re: FreeBSD Security Advisory FreeBSD-SA-02:23.stdio [REVISED]"
• Previous message: Nielsen: "Re: OpenSSH not using libssl?"
• In reply to: Nielsen: "Re: OpenSSH not using libssl?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 31 Jul 2002 01:10:12 +0200
From: Michael Nottebrock <michaelnottebrock@gmx.net>
To: Nielsen <nielsen@memberwebs.com>

Nielsen wrote:
> I think libcrypto has the ASN.1 bug.
>
> Nate
>
> ----- Original Message -----
>
>>It uses libcrypto, but it shouldn't be vulnerable.

I meant that openssh isn't vulnerable (since, afair, it doesn't use the
ASN.1 parser).

Regards,

-- 
Michael Nottebrock
"The circumstance ends uglily in the cruel result." - Babelfish

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

---

• application/pgp-signature attachment: stored

---

• Next message: Duncan Patton a Campbell is Dhu: "Re: FreeBSD Security Advisory FreeBSD-SA-02:23.stdio [REVISED]"
• Previous message: Nielsen: "Re: OpenSSH not using libssl?"
• In reply to: Nielsen: "Re: OpenSSH not using libssl?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: OpenSSH not using libssl? ... I think libcrypto has the ASN.1 bug. ... Nate ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Google Earth for Linux ... Chris Mohler wrote: ... it's own, impompatable, version of the libcrypto library in the install. ... I've filed a bug on it if anybody wishes to confirm it. ... (Ubuntu)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > FreeBSD-Security  > 2002-07