[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Does OpenSSH 3.4 remedy (001/004 as well as 006 OpenBSD 3.1 security patches)?
- To: tech_(_at_)_openbsd_(_dot_)_org
- Subject: Does OpenSSH 3.4 remedy (001/004 as well as 006 OpenBSD 3.1 security patches)?
- From: bsd user <fbibsd_(_at_)_yahoo_(_dot_)_com>
- Date: Sat, 29 Jun 2002 01:00:29 -0700 (PDT)
Here's a question concerning, and a suggestion concerning the updating of
the patch information for SSH related problems 001 and 004.
Concerning OpenBSD 3.1 security patches --
In response to:
006: SECURITY FIX: June 24, 2002,
I've updated to OpenSSH 3.4.
>From the descriptions given in the following security errata (also related to SSH):
004: SECURITY FIX: May 22, 2002
001: SECURITY FIX: April 22, 2002
...it is not made clear whether the solutions can also be made by
upgrading to OpenSSH 3.4, or whether these (or new) patches would
be needed even if one has upgraded to OpenSSH 3.4 as 006 suggests.
I presume that others who're interested in applying all known
security patches would also like to know if 006 / 004 / 001 can
be taken care of 'all at once' by a move to OpenSSH 3.4.
Maybe the 001 / 004 descriptions could be changed to state that possibility
if it's the case (similar to the way 006 is worded now).
Yahoo! - Official partner of 2002 FIFA World Cup
Visit your host, monkey.org