Mailinglist Archive: opensuse-security (375 mails)

< Previous Next >
Re: [suse-security] Is openssh 2.9.9p2 on SuSE 7.3 secure?
  • From: Martin Köhling <mk@xxxxxxxxxxxxxxxxxx>
  • Date: Fri, 13 Sep 2002 12:38:48 +0200 (CEST)
  • Message-id: <Pine.LNX.4.33.0209131233550.8777-100000@xxxxxxxxxxxxxxxxxx>
On Fri, 13 Sep 2002, Sven 'Darkman' Michels wrote:

> right, so you have to check rpm -q openssl/openssh --changelog for the
> fixes. with all that you can hopefully figure out if your enviroment
> is patched or not.

The latest openssh rpms for SuSe 7.2 und 7.3 on ftp.suse.com are both
dated July 01; since the openssl security announcement was released
on July 30, openssh can't really be fixed, *if* it it is statically
linked against the openssl libs, right?

(Unless SuSE secretly fixed openssl *long* before the announcement...)

I think a clarification would *really* be nice...

Martin


< Previous Next >
Follow Ups