From owner-freebsd-security@FreeBSD.ORG Fri Sep 19 06:16:44 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D47E216A4B3; Fri, 19 Sep 2003 06:16:44 -0700 (PDT) Received: from kurush.osdn.org.ua (external.osdn.org.ua [212.40.34.156]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0CBA043FAF; Fri, 19 Sep 2003 06:16:41 -0700 (PDT) (envelope-from never@kurush.osdn.org.ua) Received: from kurush.osdn.org.ua (never@localhost [127.0.0.1]) by kurush.osdn.org.ua (8.12.6p2/8.12.6) with ESMTP id h8JDGc7t066269; Fri, 19 Sep 2003 16:16:38 +0300 (EEST) (envelope-from never@kurush.osdn.org.ua) Received: (from never@localhost) by kurush.osdn.org.ua (8.12.6p2/8.12.6/Submit) id h8JDGa7A066266; Fri, 19 Sep 2003 16:16:36 +0300 (EEST) (envelope-from never) Date: Fri, 19 Sep 2003 16:16:36 +0300 From: Alexandr Kovalenko To: "Jacques A. Vidrine" , James Raftery , freebsd-security@FreeBSD.org Message-ID: <20030919131636.GB63736@nevermind.kiev.ua> References: <200309172237.h8HMbuvK078935@freefall.freebsd.org> <20030918100907.GA85007@bender.kerna.ie> <20030918145005.GB32994@madman.celabo.org> Mime-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline In-Reply-To: <20030918145005.GB32994@madman.celabo.org> User-Agent: Mutt/1.5.4i Subject: Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-03:12.openssh [REVISED] X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Sep 2003 13:16:44 -0000 Hello, Jacques A. Vidrine! On Thu, Sep 18, 2003 at 09:50:06AM -0500, you wrote: > On Thu, Sep 18, 2003 at 11:09:07AM +0100, James Raftery wrote: > > On Wed, Sep 17, 2003 at 03:37:56PM -0700, FreeBSD Security Advisories wrote: > > > # fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:12/buffer46.patch > > [snip] > > > > The patch above doesn't appear to modify src/crypto/openssh/version.h > > > > > Branch Version string > > > - ------------------------------------------------------------------------- > > > RELENG_4_7 OpenSSH_3.4p1 FreeBSD-20030917 > > > > After patching (on the 4.7 security branch), my version string still > > says: > > > > sshd version OpenSSH_3.4p1 FreeBSD-20020702 > > > > Would the Security Team mind publishing a version of the patch that > > modifies the version string? > > The patch is crafted specifically to apply to the widest range of > FreeBSD versions as possible. In this way we have three patches to > distribute instead of 1 per release. (Likewise, there is a single > sendmail patch instead of 1 per release.) > > Use CVSup if you want to actually track the security branches. Use > the patch if you just want a quick fix. You can also pull down the > ancilliary patches (version.h, newvers.sh, UPDATING, etc) via other > mechanisms (e.g. anon CVS, cvsweb) if you like. I've used cvsup to update my sources but I see the same picture in RELENG_4_7. -- NEVE-RIPE, will build world for food Ukrainian FreeBSD User Group http://uafug.org.ua/