On Tue, Sep 16, 2003 at 11:14:03AM -0600, Jacob Fugal wrote:
The vulnerability is in versions 3.7 and prior. 3.7p1 fixes the vulnerability.
Correction: The vulnerability is in all versions prior to 3.7. 3.7 and 3.7p1 are the same version, 3.7p1 is the portable versions, while 3.7 is the OpenBSD specific version.
------------------------------------------------------------------------
____________________
BYU Unix Users Group http://uug.byu.edu/ ___________________________________________________________________
List Info: http://uug.byu.edu/cgi-bin/mailman/listinfo/uug-list
Thanks for the clarification. Sorry about that. For those of us using Gentoo, here's the patch procedure (from a slashdot post[1]):
Go to your net-misc/openssh directory:
* cp openssh-3.6.1_p2.ebuild openssh-3.7_p1.ebuild
* emerge --update opensshThe emerge will fetch the file and complain that there is no digest.
* ebuild openssh-3.7_p1.ebuild digest
* emerge --update opensshJacob Fugal
[1] http://slashdot.org/comments.pl?sid=78703&cid=6975785
____________________
BYU Unix Users Group http://uug.byu.edu/ ___________________________________________________________________
List Info: http://uug.byu.edu/cgi-bin/mailman/listinfo/uug-list
