Re: ssh vulnerability in the wild

To: Thomas Horsten <thomas@horsten.com>, Alexander Neumann <alexander@bumpern.de>, debian-security@lists.debian.org
Subject: Re: ssh vulnerability in the wild
From: Steve Suehring <sec@braingia.org>
Date: Tue, 16 Sep 2003 10:32:52 -0500
Message-id: <[🔎] 20030916153252.GA9904@mail.braingia.org>
Mail-followup-to: Steve Suehring <sec@braingia.org>, Thomas Horsten <thomas@horsten.com>, Alexander Neumann <alexander@bumpern.de>, debian-security@lists.debian.org
In-reply-to: <[🔎] 20030916152652.GN14852@mathom.us>
References: <[🔎] 20030916143038.GG27127@hoffentlich.net> <[🔎] Pine.LNX.4.40.0309161559330.3755-100000@jehova.dsm.dk> <[🔎] 20030916152652.GN14852@mathom.us>

On Tue, Sep 16, 2003 at 11:26:52AM -0400, Michael Stone wrote:
> On Tue, Sep 16, 2003 at 04:00:30PM +0100, Thomas Horsten wrote:
> >Is there an emergency patch/workaround for this, if disabling ssh is not
> >an option? 
> 
> No.
> 

Actually, there is a patch for buffer.c:
http://www.freebsd.org/cgi/cvsweb.cgi/src/crypto/openssh/buffer.c.diff?r1=1.1.1.6&r2=1.1.1.7&f=h

I've applied that patch to woody's ssh source, rebuilt it, and installed
it on a number of servers already.  Hopefully that's the patch for this
particular exploit.  Not having seen the source code for the exploit, I 
have no idea what is being exploited.

Steve

Reply to:

Follow-Ups:
- Re: ssh vulnerability in the wild
  - From: Thomas Horsten <thomas@horsten.com>

References:
- Re: ssh vulnerability in the wild
  - From: Alexander Neumann <alexander@bumpern.de>
- Re: ssh vulnerability in the wild
  - From: Thomas Horsten <thomas@horsten.com>
- Re: ssh vulnerability in the wild
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: [d-security] Re: ssh vulnerability in the wild
Next by Date: Re: ssh vulnerability in the wild
Previous by thread: Re: ssh vulnerability in the wild
Next by thread: Re: ssh vulnerability in the wild
Index(es):
- Date
- Thread