From owner-freebsd-security Wed Jun 26 7:58:19 2002 Delivered-To: freebsd-security@freebsd.org Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by hub.freebsd.org (Postfix) with ESMTP id 2CA8337B6C5 for ; Wed, 26 Jun 2002 07:54:55 -0700 (PDT) Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.12.3/8.12.3) with SMTP id g5QEsqw6091762; Wed, 26 Jun 2002 10:54:52 -0400 (EDT) (envelope-from robert@fledge.watson.org) Date: Wed, 26 Jun 2002 10:54:51 -0400 (EDT) From: Robert Watson X-Sender: robert@fledge.watson.org To: Benjamin Krueger Cc: freebsd-security@FreeBSD.ORG Subject: Re: Much ado about nothing. In-Reply-To: <20020626072326.A4270@mail.seattleFenix.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Yeah, I believe the version of OpenSSH shipped in -STABLE and past releases is not vulnerable, but we'll need to sit down and check carefully. People running -CURRENT (what few there are) should slide their trees forward, however. Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Network Associates Laboratories On Wed, 26 Jun 2002, Benjamin Krueger wrote: > > http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20584 > > Regards, > > -- > Benjamin Krueger > > "Life is far too important a thing ever to talk seriously about." > - Oscar Wilde (1854 - 1900) > ---------------------------------------------------------------- > Send mail w/ subject 'send public key' or query for (0x251A4B18) > Fingerprint = A642 F299 C1C1 C828 F186 A851 CFF0 7711 251A 4B18 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message