Bug#211324: ssh: Further potential security bugs

To: "Adam M. Costello" <bug.amc+3@nicemice.net>, 211324@bugs.debian.org
Subject: Bug#211324: ssh: Further potential security bugs
From: Colin Watson <cjwatson@debian.org>
Date: Wed, 17 Sep 2003 03:54:18 +0100
Message-id: <[🔎] 20030917025418.GA1728@riva.ucam.org>
Reply-to: Colin Watson <cjwatson@debian.org>, 211324@bugs.debian.org
In-reply-to: <[🔎] 20030917024656.GA32094@nicemice.net>
References: <[🔎] 20030917010419.CF1A63C486E7@basilica.la.naos.co.nz> <[🔎] 20030917012619.GA386@riva.ucam.org> <[🔎] 20030917024656.GA32094@nicemice.net>

On Wed, Sep 17, 2003 at 02:46:56AM +0000, Adam M. Costello wrote:
> Colin Watson <cjwatson@debian.org> wrote:
> > Fixes are underway already.
> 
> You rock.  :)
> 
> I have one small additional plea:  If it wouldn't be too much trouble,
> could the new 3.7.1 package not depend on the unstable libc6?  Since
> everything uses libc6, the idea of installing the unstable libc6 scares
> me as much as the ssh security hole.  I generally use the testing
> version of everything.

That's a fair amount of trouble, actually ... once everything settles
down there'll be a separate release for testing-proposed-updates, which
should get into testing more quickly than the unstable release.

Cheers,

-- 
Colin Watson                                  [cjwatson@flatline.org.uk]

Reply to:

References:
- Bug#211324: ssh: Further potential security bugs
  - From: Ewen McNeill <ewen@basilica.la.naos.co.nz>
- Bug#211324: ssh: Further potential security bugs
  - From: Colin Watson <cjwatson@debian.org>
- Bug#211324: ssh: Further potential security bugs
  - From: "Adam M. Costello" <bug.amc+3@nicemice.net>

Prev by Date: Bug#211324: ssh: Further potential security bugs
Next by Date: openssh_3.6.1p2-6.0_m68k.changes REJECTED
Previous by thread: Bug#211324: ssh: Further potential security bugs
Next by thread: Bug#211324: marked as done (ssh: Further potential security bugs)
Index(es):
- Date
- Thread