From owner-freebsd-stable@FreeBSD.ORG  Thu Jan 22 11:49:49 2004
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9F84816A4CE
	for <freebsd-stable@freebsd.org>;
	Thu, 22 Jan 2004 11:49:49 -0800 (PST)
Received: from gilmore.nas.nasa.gov (gilmore.nas.nasa.gov [129.99.33.42])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C724043D2F
	for <freebsd-stable@freebsd.org>;
	Thu, 22 Jan 2004 11:49:48 -0800 (PST)
	(envelope-from tweten@nas.nasa.gov)
Received: from gilmore.nas.nasa.gov
	(IDENT:m9ttBr5iw1gg8nDDYvHHobO6F+nu+jN+@localhost.nas.nasa.gov [127.0.0.1])
	i0MJnmiH002722	for <freebsd-stable@freebsd.org>;
	Thu, 22 Jan 2004 11:49:48 -0800 (PST)
	(envelope-from tweten@gilmore.nas.nasa.gov)
X-Mailer: exmh version 2.6.3 04/04/2003 with nmh-1.0.4
To: freebsd-stable@freebsd.org
From: Dave Tweten <tweten@nas.nasa.gov>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Thu, 22 Jan 2004 11:49:48 -0800
Message-ID: <2721.1074800988@gilmore.nas.nasa.gov>
Sender: tweten@nas.nasa.gov
Subject: OpenSSH Vulnerable Prior to 3.7.1
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: David.E.Tweten@nasa.gov
List-Id: Production branch of FreeBSD source code
	<freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Jan 2004 19:49:49 -0000

I just received a computer security bulletin from another (reliable) 
source stating that there are indications of an exploit in the wild for 
versions of OpenSSH prior to 3.7.1.  It says the exploit can produce 
denial of service or administrative control of the target system.  Sshd on 
my FreeBSD-STABLE system from last Saturday says it is version 3.5p1.

I understand that FreeBSD patches old versions of OpenSSH instead of 
substituting new ones, but my question is whether sshd version 
"OpenSSH_3.5p1 FreeBSD-20030924" has these vulnerabilities fixed.  Is it 
as secure as OpenSSH 3.7.1?
-- 
M/S 258-5                    |1024-bit PGP fingerprint:|tweten@nas.nasa.gov
NASA Ames Research Center    | 41 B0 89 0A  8F 94 6C 59|     (650) 604-4416
Moffett Field, CA  94035-1000| 7C 80 10 20  25 C7 2F E6|FAX: (650) 604-4377
Not an official NASA position.  You can't even be certain who sent this!