Yes, and I colleague of mine just made a root exploit discover in OpenSSH that effects 3.0.1p1 and below. Once I know more or he decides to announce it..I'll let you know. He's in a testing phase.
Cheers!
Are you sure that openssh is affected? Right now, it looks like only the commercial ssh versions are targeted - they have similar version numbers. But still not more news. :-/ Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "You don't need eyes to see, | SuSE GmbH - Security Phone: // you need vision!" | Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless | - -