[FreeBSD-Announce] FreeBSD Security Advisory
FreeBSD-SA-03:12.openssh [REVISED]
Jacques A. Vidrine
nectar at FreeBSD.org
Thu Sep 18 07:50:08 PDT 2003
On Thu, Sep 18, 2003 at 11:09:07AM +0100, James Raftery wrote:
> On Wed, Sep 17, 2003 at 03:37:56PM -0700, FreeBSD Security Advisories wrote:
> > # fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:12/buffer46.patch
> [snip]
>
> The patch above doesn't appear to modify src/crypto/openssh/version.h
>
> > Branch Version string
> > - -------------------------------------------------------------------------
> > RELENG_4_7 OpenSSH_3.4p1 FreeBSD-20030917
>
> After patching (on the 4.7 security branch), my version string still
> says:
>
> sshd version OpenSSH_3.4p1 FreeBSD-20020702
>
> Would the Security Team mind publishing a version of the patch that
> modifies the version string?
The patch is crafted specifically to apply to the widest range of
FreeBSD versions as possible. In this way we have three patches to
distribute instead of 1 per release. (Likewise, there is a single
sendmail patch instead of 1 per release.)
Use CVSup if you want to actually track the security branches. Use
the patch if you just want a quick fix. You can also pull down the
ancilliary patches (version.h, newvers.sh, UPDATING, etc) via other
mechanisms (e.g. anon CVS, cvsweb) if you like.
Cheers,
--
Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX . Heimdal
nectar at celabo.org . jvidrine at verio.net . nectar at freebsd.org . nectar at kth.se
More information about the freebsd-security
mailing list