|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: OpenSSH heads-up
From: D J Hawkey Jr (hawkeyd
visi.com)
Date: Tue Sep 16 2003 - 10:00:56 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Sep 16, at 09:55 AM, Jacques A. Vidrine wrote:
>
> Here's the meat of it:
>
> ---- begin excerpt ----
> This is the 1st revision of the Advisory.
>
> This document can be found at: http://www.openssh.com/txt/buffer.adv
>
> 1. Versions affected:
>
> All versions of OpenSSH's sshd prior to 3.7 contain a buffer
> management error. It is uncertain whether this error is
> potentially exploitable, however, we prefer to see bugs
> fixed proactively.
>
> 2. Solution:
>
> Upgrade to OpenSSH 3.7 or apply the following patch.
> ---- end excerpt ----
How far away are we from a FreeBSD SA? When the patch(es) are ready
for all the other supported releases?
Dave
--
______________________ ______________________
\__________________ \ D. J. HAWKEY JR. / __________________/
\________________/\ hawkeydvisi.com /\________________/
http://www.visi.com/~hawkeyd/
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]