« Return to Thread: Backport for OpenSSH CBC Mode Information Disclosure Vulnerability
Re: Backport for OpenSSH CBC Mode Information Disclosure Vulnerability
by Nico Golde-9
::
Rate this Message:
Hi,
* Niko Thome <niko.thome@...> [2009-06-30 11:47]:
> I stumbled upon a vulnerability in OpenSSH reported back in November
> 2008. http://www.securityfocus.com/bid/32319
>
> I was a bit concerned about that flaw, and tried to find out if it is
> fixed due a backport of some openSSH 5.2 upstream code. But I didn't
> find neither a bug nor a DSA for that flaw.
>
> Can you tell me how this bug is handled by Debian?
http://security-tracker.debian.net/tracker/CVE-2008-5161
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - nion@... - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.
* Niko Thome <niko.thome@...> [2009-06-30 11:47]:
> I stumbled upon a vulnerability in OpenSSH reported back in November
> 2008. http://www.securityfocus.com/bid/32319
>
> I was a bit concerned about that flaw, and tried to find out if it is
> fixed due a backport of some openSSH 5.2 upstream code. But I didn't
> find neither a bug nor a DSA for that flaw.
>
> Can you tell me how this bug is handled by Debian?
http://security-tracker.debian.net/tracker/CVE-2008-5161
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - nion@... - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.
attachment0 (852 bytes) « Return to Thread: Backport for OpenSSH CBC Mode Information Disclosure Vulnerability
| Free embeddable forum powered by Nabble | Forum Help |
