Date: Thu, 18 Sep 2003 09:50:06 -0500 From: "Jacques A. Vidrine" <nectar@FreeBSD.org> To: James Raftery <james@kerna.ie> Cc: freebsd-security@freebsd.org Subject: Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-03:12.openssh [REVISED] Message-ID: <20030918145005.GB32994@madman.celabo.org> In-Reply-To: <20030918100907.GA85007@bender.kerna.ie> References: <200309172237.h8HMbuvK078935@freefall.freebsd.org> <20030918100907.GA85007@bender.kerna.ie>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Sep 18, 2003 at 11:09:07AM +0100, James Raftery wrote: > On Wed, Sep 17, 2003 at 03:37:56PM -0700, FreeBSD Security Advisories wrote: > > # fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:12/buffer46.patch > [snip] > > The patch above doesn't appear to modify src/crypto/openssh/version.h > > > Branch Version string > > - ------------------------------------------------------------------------- > > RELENG_4_7 OpenSSH_3.4p1 FreeBSD-20030917 > > After patching (on the 4.7 security branch), my version string still > says: > > sshd version OpenSSH_3.4p1 FreeBSD-20020702 > > Would the Security Team mind publishing a version of the patch that > modifies the version string? The patch is crafted specifically to apply to the widest range of FreeBSD versions as possible. In this way we have three patches to distribute instead of 1 per release. (Likewise, there is a single sendmail patch instead of 1 per release.) Use CVSup if you want to actually track the security branches. Use the patch if you just want a quick fix. You can also pull down the ancilliary patches (version.h, newvers.sh, UPDATING, etc) via other mechanisms (e.g. anon CVS, cvsweb) if you like. Cheers, -- Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX . Heimdal nectar@celabo.org . jvidrine@verio.net . nectar@freebsd.org . nectar@kth.se
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030918145005.GB32994>