Mehrere Probleme in openssh
ID: | FEDORA-2005-860 |
Distribution: | Fedora |
Plattformen: | Fedora Core 4 |
Datum: | Mo, 12. September 2005, 19:32 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2798 |
Applikationen: | Portable OpenSSH |
Originalnachricht |
|
--------------------------------------------------------------------- Fedora Update Notification FEDORA-2005-860 2005-09-12 --------------------------------------------------------------------- Product : Fedora Core 4 Name : openssh Version : 4.2p1 Release : fc4.1 Summary : The OpenSSH implementation of SSH protocol versions 1 and 2. Description : OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. SSH replaces rlogin and rsh, to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the secure channel. Public key authentication may be used for "passwordless" access to servers. This package includes the core files necessary for both the OpenSSH client and server. To make this package useful, you should also install openssh-clients, openssh-server, or both. --------------------------------------------------------------------- Update Information: This security update fixes CAN-2005-2797 and CAN-2005-2798 and resolves a problem with X forwarding binding only on IPv6 address on certain circumstances. As it is an upgrade to a newer upstream release there is a small change in interoperability with ssh clients older than 3.5p1 if they are configured so they insist on compression. If interoperability with such clients is required, the "Compression" option must be set to "yes". --------------------------------------------------------------------- * Wed Sep 7 2005 Tomas Mraz |