Possible new openssh vulnerability

Ken Moffat ken at kenmoffat.uklinux.net
Tue Sep 16 10:32:42 PDT 2003


 openssh-3.7p1 is out, and wadda you know, /. has rumours of an exploit
to previous versions in the wild.  A quick look at the changelog doesn't
show anything obvious.  According to lwn, there are rumours of exploits,
but no known exploit.  The /. link on the exploit is of course suffering
from being /.'ed.

 Summary: unclear if the problem is real, or affects other than open
BSD.

Ken
-- 
 Peace, love, linux






More information about the lfs-security mailing list