[Technik] [SECURITY] [DSA 1212-1] New openssh packages fix
denial of service
Noèl Köthe
noel at debian.org
Wed Nov 15 21:21:45 CET 2006
Am Mittwoch, den 15.11.2006, 18:26 +0100 schrieb Noah Meyerhans:
> Debian Security Advisory DSA-1212-1 security at debian.org
> http://www.debian.org/security/ Noah Meyerhans
> November 15, 2006
>
> Package : openssh (1:3.8.1p1-8.sarge.6)
> Vulnerability : Denial of service
> Problem type : remote
> Debian-specific: no
> CVE Id(s) : CVE-2006-4924 CVE-2006-5051
> BugTraq ID : 20216 20241
> Debian Bug : 392428
openssh auf pima, pomo, cusa, cree, wasco, cupa, kiowa, karuk, kansa,
acoma, h01, h02, h03 und h04 aktualisiert.
> For the stable distribution (sarge), these problems have been fixed in
> version 1:3.8.1p1-8.sarge.6
changelog:
openssh (1:3.8.1p1-8.sarge.6) stable-security; urgency=high
* Non-maintainer upload by the Security team
* Apply patch to correct a possible denial of service vulnerability
caused by a signal handler race condition. CVE-2006-5051
-- Noah Meyerhans <noahm at debian.org> Tue, 31 Oct 2006 17:53:38 -0500
openssh (1:3.8.1p1-8.sarge.5) stable-security; urgency=high
* Non-maintainer upload by the Security team
* Apply patch to correct denial of service vulnerability in ssh protocol 1
server support (CVE-2006-4924)
-- Noah Meyerhans <noahm at debian.org> Tue, 31 Oct 2006 11:06:20 -0500
--
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : /archiv/technik/attachments/20061115/012e077b/attachment.pgp
More information about the Technik
mailing list