[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Backport for OpenSSH CBC Mode Information Disclosure Vulnerability



Hello List,

I stumbled upon a vulnerability in OpenSSH reported back in November
2008. http://www.securityfocus.com/bid/32319

I was a bit concerned about that flaw, and tried to find out if it is
fixed due a backport of some openSSH 5.2 upstream code. But I didn't
find neither a bug nor a DSA for that flaw.

Can you tell me how this bug is handled by Debian?

Thank you!

Niko

Attachment: signature.asc
Description: OpenPGP digital signature


Reply to: