[MBT] new entry in pkg openssh "CAN 695 AND CAN 693 fixed?"
bugs at pld-linux.org
bugs at pld-linux.org
Thu Oct 16 14:07:36 CEST 2003
Date: 2003-10-16 14:07:35+02 Author: Jakub Bogusz (qboosh) <qboosh at pld-linux.org>
Title: CAN 695 AND CAN 693 fixed?
Ticket ID: #744
Ticket URL: http://bugs.pld-linux.org/?bug=744
Package: openssh-1:3.2.3p1-3
Distribution: PLD-1.0.main
Category: security problem
Current state: resolving state
Text:
CAN-2003-0693 was fixed in openssh 3.2.3p1-4
CAN-2003-0695 was fixed in openssh 3.2.3p1-6
There is no patch for CAN-2003-0190 yet; but note that this
vulnerability affects only non-default configurations
(with PAMAuthenticationViaKbdInt disabled).
I'm working on forgotten CAN-2003-0682 fix (it seems unclear
if any of these four problems is exploitable... the first in
the Solar's patch doesn't seem to be anyway; but I'm going
to apply whole patch).
*** State changed to 'resolving state'
More information about the pld-bugs
mailing list