Re: new unpublished SSH exploit ?
From: Patrick Lamb (pdlambat_at_comcast.net)
Date: 09/18/03
- Next message: Patrick Cairpre: "Why open? How do I close?"
- Previous message: Jem Berkes: "Re: Security and CGI-BIN path ?"
- In reply to: Nico Kadel-Garcia: "Re: new unpublished SSH exploit ?"
- Next in thread: Joe Harrison: "Re: new unpublished SSH exploit ?"
- Reply: Joe Harrison: "Re: new unpublished SSH exploit ?"
- Reply: Jim Kissel: "Re: new unpublished SSH exploit ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 17 Sep 2003 21:49:43 -0500
On Wed, 17 Sep 2003 04:37:02 GMT, Nico Kadel-Garcia
<nkadel@verizon.net> wrote:
>David Magda wrote:
>
>> dtucker@dodgy.net.au (Darren Tucker) writes:
>>
>>
>>>OpenSSH 3.7 (and 3.7p1) were released a couple of hours ago. The
>>>announcement does not appear to have hit the list archives yet.
>>
>> [...]
>>
>> There is also a patch available if you do not want to upgrade to a
>> newer version (which can change other behaviour):
>>
>> http://www.openssh.com/txt/buffer.adv
>>
>
>It got slashdotted earlier today: RedHat has already published updated
>RPM's for their more recent OS releases, since the patch is quite small
>and intelligible.
FWIW, Redhat has updated the updated RPMs for openssh today (9/17).
Pat
- Next message: Patrick Cairpre: "Why open? How do I close?"
- Previous message: Jem Berkes: "Re: Security and CGI-BIN path ?"
- In reply to: Nico Kadel-Garcia: "Re: new unpublished SSH exploit ?"
- Next in thread: Joe Harrison: "Re: new unpublished SSH exploit ?"
- Reply: Joe Harrison: "Re: new unpublished SSH exploit ?"
- Reply: Jim Kissel: "Re: new unpublished SSH exploit ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
