Re: CVE-2006-0883 - are we vuln?

To: debian-security@lists.debian.org
Subject: Re: CVE-2006-0883 - are we vuln?
From: Jan Luehr <jan@kabelwelt-shop.de>
Date: Mon, 6 Mar 2006 09:24:13 +0100
Message-id: <[🔎] 200603060924.13648.jan@kabelwelt-shop.de>
In-reply-to: <[🔎] slrne0mnuk.6di.jmm@inutil.org>
References: <[🔎] 200603052234.39608.jan@kabelwelt-shop.de> <[🔎] slrne0mnuk.6di.jmm@inutil.org>

Hello,

Am Sonntag, 5. März 2006 23:01 schrieb Moritz Muehlenhoff:
> Jan Luehr wrote:
> > can you confirm or deny, that we're effected by CVE-2006-0883 (SSH-DoS)?
> > I haven't found any suitable information yet.
> > Since only freebsd released a fix (afaik) I don't even know, if any linux
> > builts are  exploitable.
>
> It's fixed since ages in Debian, in 3.8.1p1-4, Woody isn't affected.

Thanks - do you know the dsa number, too?
I haven't seen any dsa regarding openssh this year. (Well, it's CVE-2006, thus 
I think it've been found this year, haven't it?

Keep smiling
yanosz

Reply to:

Follow-Ups:
- Re: CVE-2006-0883 - are we vuln?
  - From: Moritz Muehlenhoff <jmm@inutil.org>

References:
- CVE-2006-0883 - are we vuln?
  - From: Jan Luehr <jan@kabelwelt-shop.de>
- Re: CVE-2006-0883 - are we vuln?
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: CVE-2006-0883 - are we vuln?
Next by Date: Re: first A record of security.debian.org extremely slow
Previous by thread: Re: CVE-2006-0883 - are we vuln?
Next by thread: Re: CVE-2006-0883 - are we vuln?
Index(es):
- Date
- Thread