From owner-freebsd-security Thu Mar 7 15:41:55 2002 Delivered-To: freebsd-security@freebsd.org Received: from router.drapple.com (12-225-2-26.client.attbi.com [12.225.2.26]) by hub.freebsd.org (Postfix) with ESMTP id 5663C37B417 for ; Thu, 7 Mar 2002 15:41:48 -0800 (PST) Received: from work.drapple.com (work [192.168.1.10]) by router.drapple.com (8.9.3/8.9.3) with ESMTP id PAA03521 for ; Thu, 7 Mar 2002 15:41:00 -0800 (PST) (envelope-from mark@work.drapple.com) Message-ID: X-Mailer: XFMail 1.4.0 on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <200203071459.g27ExoP68069@freefall.freebsd.org> Date: Thu, 07 Mar 2002 15:41:47 -0800 (PST) From: Mark Hartley To: freebsd-security@freebsd.org Subject: RE: FreeBSD Security Advisory FreeBSD-SA-02:13.openssh Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > The following patch has been verified to apply to FreeBSD 4.4-RELEASE, > 4.5-RELEASE, and 4.5-STABLE dated prior to the correction date. It > may or may not apply to older, unsupported versions of FreeBSD. > > Download the patch and the detached PGP signature from the following > locations, and verify the signature using your PGP utility. > ># fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-02:13/openssh.patch ># fetch ># ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-02:13/openssh.patch.asc > > Execute the following commands as root: > ># cd /usr/src ># patch < /path/to/sshd.patch ># cd /usr/src/secure/lib/libssh ># make depend && make all ># cd /usr/src/secure/usr.sbin/sshd ># make depend && make all install ># cd /usr/src/secure/usr.bin/ssh ># make depend && make all install OK, I followed what the advisory said, and I ran the patch. It seems to have applied fine, but it did not update src/crypto/openssh/version.h, so that it (sshd) still reports itself as the older version. It seems to me that this might cause some confusion for people in knowing if they've patched their systems or not. Mark. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message