Re: SSH Vulnerbility(?)

To: Ilan Rabinovitch <ilan@fonz.net>
Cc: debian-ssh@lists.debian.org
Subject: Re: SSH Vulnerbility(?)
From: ucko@debian.org (Aaron M. Ucko)
Date: 25 Jun 2002 21:21:54 -0400
Message-id: <udlwusm6dhp.fsf@multics.mit.edu>
In-reply-to: <20020625222340.GA2497@fonz.net>
References: <20020625222340.GA2497@fonz.net>

Ilan Rabinovitch <ilan@fonz.net> writes:

> Have you all seen this?
> Does this effect Woody? or Sid?
> If so are there any plans to package the newer versions which implement
> privsep?
> 
> http://marc.theaimsgroup.com/?l=openbsd-announce&m=102497569424297&q=raw

Already done for woody (and potato, just in case 1.2.3 was also
vulnerable); please see <http://www.debian.org/security/2002/dsa-134>.
Nothing seems to have been uploaded to unstable yet, but the woody
updates should work there.

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
Finger amu@monk.mit.edu (NOT a valid e-mail address) for more info.

-- 
To UNSUBSCRIBE, email to debian-ssh-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: SSH Vulnerbility(?)
  - From: Matthew Vernon <matthew@debian.org>

References:
- SSH Vulnerbility(?)
  - From: Ilan Rabinovitch <ilan@fonz.net>

Prev by Date: SSH Vulnerbility(?)
Next by Date: Re: SSH Vulnerbility(?)
Previous by thread: SSH Vulnerbility(?)
Next by thread: Re: SSH Vulnerbility(?)
Index(es):
- Date
- Thread