Re: openssh packages not vulnerable
Note that Potato users actually BECAME vulnerable by installing this
"security fix".
On Thu, 27 Jun 2002, Florian Weimer wrote:
>Paul Baker <pbaker@where2getit.com> writes:
>
>> So as it turns out, AFAIK, none of the versions of OpenSSH in Debian
>> were actually vulnerable to the exploit found by ISS and reported in
>> DSA-134
>
>The 3.3p1 packages are vulnerable in some configurations. :-(
>
>
--
Customer: "I'm running Windows '98" Tech: "Yes." Customer:
"My computer isn't working now." Tech: "Yes, you said that."
Who is John Galt? galt@inconnu.isu.edu, that's who!
--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: