[ale] SSH Patch
Christopher Fowler
cfowler at outpostsentinel.com
Tue Sep 16 13:23:14 EDT 2003
If I just got 3.7p1, Why is the OpenSSH.org page not updated. I can
t find a single reference to this issue on OpenSSH.org
On Tue, Sep 16, 2003 at 12:20:45PM -0400, Jonathan Rickman wrote:
> On Tuesday 16 September 2003 11:00, synco gibraldter wrote:
>
> > it appears that they're now using an intermediate variable to change
> > the buffer size and check before adjusting the primary variable....
> > looks like it may have been susceptible to an overflow? i can't tell
> > for sure. anyone know if there are active exploits yet or if this is a
> > precaution? thanks.
>
> There have been reports of compromised systems. No details, but at least
> one major ISP was reportedly filtering SSH connections last night after
> receiving reports of multiple incidents.
>
> --
> Jonathan Rickman
> Key ID: 0DF501FF
>
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list