[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)

Subject: [ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)
From: jasonday at worldnet.att.net (Jason Day)
Date: Tue Sep 16 12:14:23 2003
In-reply-to: <[email protected]>
References: <[email protected]>

I just did an apt-get update on Debian Woody, and there was a new
security update for ssh.  Here is the entry from the changelog:

openssh (1:3.4p1-1.1) stable-security; urgency=high
  
  * NMU by the security team.
  * Merge patch from OpenBSD to fix a security problem in buffer
  * handling
 
 -- Wichert Akkerman <wakkerma at debian.org>  Tue, 16 Sep 2003 13:06:31 +0200


Looks like more than just a rumor.  Patch those systems, people!
-- 
Jason Day                                       jasonday at
http://jasonday.home.att.net                    worldnet dot att dot net
 
"Of course I'm paranoid, everyone is trying to kill me."
    -- Weyoun-6, Star Trek: Deep Space 9

Follow-Ups:
- [ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)
  - From: cfowler at outpostsentinel.com (Christopher Fowler)

References:
- [ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)
  - From: kaboom at gatech.edu (Chris Ricker)

Prev by Date: [ale] Great News! We've doubled the speed of.....
Next by Date: [ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)
Previous by thread: [ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)
Next by thread: [ale] [Full-Disclosure] The lowdown on SSH vulnerability (fwd)
Index(es):
- Date
- Thread