[1917] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: SSH security hole found

daemon@ATHENA.MIT.EDU (The Nolander)
Sun Jun 21 03:14:29 1998

Date: Sat, 20 Jun 1998 17:25:04 +0200 (CEST)
From: The Nolander <nolander@krixor.xy.org>
To: samboy@mr.samiam.org
cc: linux-security@redhat.com
In-Reply-To: <Pine.LNX.3.95.980619115748.19530A-100000@ankh.samiam.org>
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com

On Fri, 19 Jun 1998 samboy@mr.samiam.org wrote:

> >From http://lwn.net/#security
> 
>   A vulnerability present in the SSH software package can allow an
>   attacker to execute arbitrary commands on the SSH server.  To protect
>   against this, immediately upgrade to ssh 1.2.25. Red Hat ssh-1.2.25 RPMs
>   are available, as is the Debian ssh-1.1.25 package for hamm (Debian
>   2.0-to-be).

Do you/they mean http://www.core-sdi.com/ssh/ssh-advisory.txt this ?

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post