Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 620
Alerts This Week
Warning Icon 1 620

Gentoo Linux 200305-02 Critical: OpenSSH User ID Exploit Advisory

gentoo
Calendar Grey May 13, 2003
Dist Gentoo Esm H88
Gentoo advisory 200305-02 details a critical OpenSSH exploit with solutions for users to mitigate risks effectively.
Updated shadow package that contains a workarkaround for OpenSSH user identification problem.

Summary


GENTOO LINUX SECURITY ANNOUNCEMENT 200305-02


Updated shadow package that contains a workarkaround for OpenSSH user identification problem discussed in

SOLUTION
It is recommended that all Gentoo Linux users who are running sys-apps/shadow upgrade to shadow-4.0.3-r5 as follows:
emerge sync emerge shadow emerge clean
aliz@gentoo.org - GnuPG key is available at

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
critical
Lowest
Low
Medium
High
Critical

PACKAGE : shadow
SUMMARY : PAM workaround for OpenSSH user identification
DATE : 2003-05-13 10:13 UTC
EXPLOIT : remote
VERSIONS AFFECTED : =shadow-4.0.3-r5
CVE : CAN-2003-0190

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround