Re: [d-security] Re: ssh vulnerability in the wild

To: Dossy <dossy@panoptic.com>, debian-security@lists.debian.org
Subject: Re: [d-security] Re: ssh vulnerability in the wild
From: Jan Niehusmann <jan@debian.org>
Date: Tue, 16 Sep 2003 19:29:33 +0200
Message-id: <[🔎] 20030916172933.GA23993@gondor.com>
In-reply-to: <[🔎] 20030916171034.GG14295@panoptic.com>
References: <[🔎] 20030916143038.GG27127@hoffentlich.net> <[🔎] Pine.LNX.4.40.0309161559330.3755-100000@jehova.dsm.dk> <[🔎] 20030916153106.GE29419@westend.com> <[🔎] 20030916171034.GG14295@panoptic.com>

On Tue, Sep 16, 2003 at 01:10:34PM -0400, Dossy wrote:
> Is 3.6.1p2-3 vulnerable?  For those of us who want security, must we
> downgrade to 3.4p1-1.1 or build from source after patching by hand?  Or
> will this security fix be applied to sarge as well?

I guess the patch will apply to sarge as well, so you can easily build a
patched version yourself. Don't expect official security updates for
testing. It'll be fixed when the version from sid gets promoted to sarge. 

Jan

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: [d-security] Re: ssh vulnerability in the wild
  - From: Dale Amon <amon@vnl.com>

References:
- Re: ssh vulnerability in the wild
  - From: Alexander Neumann <alexander@bumpern.de>
- Re: ssh vulnerability in the wild
  - From: Thomas Horsten <thomas@horsten.com>
- Re: [d-security] Re: ssh vulnerability in the wild
  - From: Christian Hammers <ch@debian.org>
- Re: [d-security] Re: ssh vulnerability in the wild
  - From: Dossy <dossy@panoptic.com>

Prev by Date: Re: ssh vulnerability in the wild
Next by Date: Re: ssh vulnerability in the wild
Previous by thread: Re: [d-security] Re: ssh vulnerability in the wild
Next by thread: Re: [d-security] Re: ssh vulnerability in the wild
Index(es):
- Date
- Thread