thr3ads.net - openssh unix dev - 3.6.1p2 plus buffer overflow vulnerabilities patch, sufficient? [Oct 2003]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Jay Libove

2003-Oct-03 11:36 UTC

3.6.1p2 plus buffer overflow vulnerabilities patch, sufficient?

Because of the high volume of discussion of various minor or somewhat
serious problems and incompatibilities introduced in the 3.7x series, I
prefer to stay with 3.6.1p2 plus the buffer overflow vulnerabilities patch
for a while.

Are there any other security changes introduced in the 3.7x series from
3.6.1p2 other than the back-ported patch for the buffer overflow
vulnerabilities announced a few weeks ago?

Thanks
-Jay

Possibly Parallel Threads

The specified network name is no longer available
[RHSA-2001:099-06] New telnet packages available to fix buffer overflow vulnerabilities
Buffer Overflow Vulnerability Study at Auburn University
OpenSSH 3.6.1p1 on NCR MP-RAS v4.3, several weird terminal problems
SSH login attempts: tcpdump packet capture

Search for more possibly parallel threads

openssh unix dev - Oct 2003 - 3.6.1p2 plus buffer overflow vulnerabilities patch, sufficient?

3.6.1p2 plus buffer overflow vulnerabilities patch, sufficient?

Possibly Parallel Threads

Wisdom of the Ancients