|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
OpenSSH heads-up
From: Jacques A. Vidrine (nectar
FreeBSD.org)
Date: Tue Sep 16 2003 - 08:43:47 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
OK, an official OpenSSH advisory was released, see here:
<URL: http://www.mindrot.org/pipermail/openssh-unix-announce/2003-September/000063.html >
The fix is currently in FreeBSD -CURRENT and -STABLE. It will be
applied to the security branches as well today. Attached are patches:
buffer46.patch -- For FreeBSD 4.6-RELEASE and later
buffer45.patch -- For FreeBSD 4.5-RELEASE and earlier
Currently, I don't believe that this bug is actually exploitable for
code execution on FreeBSD, but I reserve the right to be wrong :-)
Cheers,
--
Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX . Heimdal
nectarcelabo.org . jvidrineverio.net . nectarfreebsd.org . nectarkth.se
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (FreeBSD)
iD8DBQE/ZxORFdaIBMps37IRArwEAJ4pkegMfNqSjkLvRgjCDDQa+9sXHwCfbgXd
tlPyniRS899w5gbfV0HuuQk=
=x62V
-----END PGP SIGNATURE-----
- text/plain attachment: buffer45.patch
- text/plain attachment: buffer46.patch
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]