[olug] And still another (potential) OpenSSH hole found...

Daniel G. Linder dlinder at iprevolution.net
Tue Sep 23 19:11:57 UTC 2003


Ok, this time I'll include more details.  In short, a good chunk of the
world probably updated to OpenSSH 3.7.1 after last weeks announcement of
possible exploits in code to OpenSSH that is in all the latest Linux
distributions.  Now, there is another potential security hole in OpenSSH
3.7.1!!!

Read on at:
http://www.linuxsecurity.com/articles/cryptography_article-7996.html
http://www.openssh.com/txt/sshpam.adv

Dan


More information about the OLUG mailing list