From owner-freebsd-stable Thu Mar 7 10:42:44 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mail.quantified.com (ns2.quantified.com [63.212.171.3]) by hub.freebsd.org (Postfix) with ESMTP id 04D3A37B402 for ; Thu, 7 Mar 2002 10:42:30 -0800 (PST) Received: from mail.quantified.com (localhost [127.0.0.1]) by mail.quantified.com (8.12.1/8.12.1) with ESMTP id g27IgsOZ011200; Thu, 7 Mar 2002 10:42:54 -0800 (PST) (envelope-from dsilver@mail.quantified.com) Received: from localhost (dsilver@localhost) by mail.quantified.com (8.12.1/8.12.1/Submit) with ESMTP id g27IgsR1011197; Thu, 7 Mar 2002 10:42:54 -0800 (PST) Date: Thu, 7 Mar 2002 10:42:54 -0800 (PST) From: Doug Silver To: Jesse Geddis Cc: stable@FreeBSD.ORG Subject: RE: openssh root hole? In-Reply-To: Message-ID: <20020307103754.A9891-100000@mail.quantified.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Filter-Version: 1.7 (mail.quantified.com) Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Quick question on this, beyond 'make buildworld', is there a command to pass to make to have it rebuild the just the secure stuff (assuming the standard /usr/src and /usr/obj setup)? Reading through the various commands it doesn't appear that way but I wanted to confirm that's indeed the case. Thanks. -Doug On Thu, 7 Mar 2002, Jesse Geddis wrote: > file doesn't exist fyi. > ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-02:13/openssh.patch > > -----Original Message----- > From: owner-freebsd-stable@FreeBSD.ORG > [mailto:owner-freebsd-stable@FreeBSD.ORG]On Behalf Of Chris Faulhaber > Sent: Thursday, March 07, 2002 7:25 AM > To: Lauri Laupmaa > Cc: stable@freebsd.org > Subject: Re: openssh root hole? > > > On Thu, Mar 07, 2002 at 05:16:28PM +0200, Lauri Laupmaa wrote: > > Hi > > > > As I just read from > http://www.pine.nl/advisories/pine-cert-20020301.txt > > > > OpenSSH All versions between 2.0 and 3.0.2 have local root hole. > > > > Is it fixed in -STABLE or is it issue at all? > > > > Please see the advisory that was just released (and/or subscribe to > the freebsd-security-notifications list)... > > http://docs.freebsd.org/cgi/getmsg.cgi?fetch=0+0+current/freebsd-secur > ity-notifications > > -- > Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org > -------------------------------------------------------- > FreeBSD: The Power To Serve - http://www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message