Mailinglist Archive: opensuse-security (375 mails)
| < Previous | Next > |
Re: [suse-security] Is openssh 2.9.9p2 on SuSE 7.3 secure?
- From: Martin Köhling <mk@xxxxxxxxxxxxxxxxxx>
- Date: Fri, 13 Sep 2002 12:38:48 +0200 (CEST)
- Message-id: <Pine.LNX.4.33.0209131233550.8777-100000@xxxxxxxxxxxxxxxxxx>
On Fri, 13 Sep 2002, Sven 'Darkman' Michels wrote:
> right, so you have to check rpm -q openssl/openssh --changelog for the
> fixes. with all that you can hopefully figure out if your enviroment
> is patched or not.
The latest openssh rpms for SuSe 7.2 und 7.3 on ftp.suse.com are both
dated July 01; since the openssl security announcement was released
on July 30, openssh can't really be fixed, *if* it it is statically
linked against the openssl libs, right?
(Unless SuSE secretly fixed openssl *long* before the announcement...)
I think a clarification would *really* be nice...
Martin
> right, so you have to check rpm -q openssl/openssh --changelog for the
> fixes. with all that you can hopefully figure out if your enviroment
> is patched or not.
The latest openssh rpms for SuSe 7.2 und 7.3 on ftp.suse.com are both
dated July 01; since the openssl security announcement was released
on July 30, openssh can't really be fixed, *if* it it is statically
linked against the openssl libs, right?
(Unless SuSE secretly fixed openssl *long* before the announcement...)
I think a clarification would *really* be nice...
Martin
| < Previous | Next > |