Openssh: probable vulnerabilidad

“All versions of OpenSSH’s sshd prior to 3.7 contain a buffer
management error. It is uncertain whether this error is
potentially exploitable, however, we prefer to see bugs
fixed proactively.

OpenSSH 3.7 fixes this bug.”

En muchas listas de seguridad se puede leer esto, así que ya saben muchanchos! hay que actualizar los servers de ssh!!

Para los que prefieren compilar se van derecho a http://www.openssh.org/
Los que usan RedHat pasar por RedHat Network
Para los que usan Gentoo basta con hacer un emerge openssh
Como bien imaginan, todas las distros populares sacaron la nueva versión, así que si pasa algo es culpa tuya por no parchar tu server

This entry was posted on Tuesday, September 16th, 2003 at 19:20 pm and is filed under Linux. Find similar posts by selecting any of the following tags: . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

1 Comment so far

on 21/September/2003 at 01:00 am nemesis- wrote:

No hay porque pasar por RHN…

up2date –nox -u openssh

Have your say

Fields in bold are required. Email addresses are never published or distributed.

Some HTML code is allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
URIs must be fully qualified (eg: http://www.domainname.com) and all tags must be properly closed.

Line breaks and paragraphs are automatically converted.

Please keep comments relevant. Off-topic, offensive or inappropriate comments may be edited or removed.