[FreeBSD-Announce] FreeBSD Security
AdvisoryFreeBSD-SA-03:12.openssh [REVISED]
Devon H. O'Dell
dodell at sitetronics.com
Fri Sep 19 06:48:17 PDT 2003
Alexandr Kovalenko wrote:
>Hello, Devon H. O'Dell!
>
>On Fri, Sep 19, 2003 at 03:21:22PM +0200, you wrote:
>
>
>
>>Alexandr Kovalenko wrote:
>>
>>
>>
>>>[snip]
>>>
>>>I've used cvsup to update my sources but I see the same picture in
>>>RELENG_4_7.
>>>
>>>
>>>
>>>
>>As did I using RELENG_5_1 -- the version remains at 3.6.1p1.
>>
>>
>
>Not version, but timestamp!
>
>
Umm... yeah, that was my implication. Sorry for the poor wording. My
version string (generated by ssh -V or sshd --help) remains unchanged.
The source is patched/updated and should by all means be invulnerable to
that attack. I did not notice version.h or other related files being
checked out in my cvsup.
--Devon
More information about the freebsd-security
mailing list