Slackware: SSA:2003-260-01 Critical: OpenSSH Buffer Management Exploit
slackware
September 17, 2003
These packages fix additional buffer managementerrors that were not corrected in the recent 3.7p1 release.
Summary
Here are the details from the Slackware 9.0 ChangeLog: Wed Sep 17 01:25:22 PDT 2003 patches/packages/openssh-3.7.1p1-i386-1.tgz: Upgraded to openssh-3.7.1p1. The OpenSSH advisory was updated (https://www.openssh.org/txt/buffer.adv) and now says that you need at least version 3.7.1, which fixes some more buffer problems like those fixed by 3.7. (* Security fix *) WHERE TO FIND THE NEW PACKAGES: Updated package for Slackware 8.1: Updated package for Slackware 9.0: Updated package for Slackware -current: MD5 SIGNATURES: Slackware 8.1 package: c3b50ac3f2cd52c7ad10a0fbb141efe9 openssh-3.7.1p1-i386-1.tgz Slackware 9.0 package: 0362f59c065c79c3eb733519394d0a60 openssh-3.7.1p1-i386-1.tgz Slackware -current package: e6e9cb0a9811f982d615e7a96c6c76e9 openssh-3.7.1p1-i486-1.tgz INSTALLATION INSTRUCTIONS: (This procedure is safe to do while logged in through OpenSSH) Upgrade using upgradepkg (as root): # upgradepkg openssh-3.7.1p1-i386-1.tgz Restart
Read the Full Advisory
Where Find New Packages
MD5 Signatures
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!