[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenSSH Security Advisory: buffer.adv

To: bugs_(_at_)_openbsd_(_dot_)_org
Subject: Re: OpenSSH Security Advisory: buffer.adv
From: Dries Schellekens <gwyllion_(_at_)_ace_(_dot_)_ulyssis_(_dot_)_org>
Date: Thu, 18 Sep 2003 01:41:06 +0200 (CEST)
Cc: openssh-unix-dev_(_at_)_mindrot_(_dot_)_org

On Wed, 17 Sep 2003, Dries Schellekens wrote:

> Will the 4 extra fixes by Solar Designer be included as well?
>
> >From the Owl Changelog
> 2003/09/17	Package: openssh
> SECURITY FIX	Severity: medium, remote, active
>
> Multiple memory management errors have been discovered in OpenSSH, and
> this update corrects 6 such real or potential errors based on an
> exhaustive review of the OpenSSH source code for uses of *realloc()
> functions. At this time, it is uncertain whether and which of these bugs
> are exploitable. If exploits are possible, due to privilege separation,
> the worst direct impact should be limited to arbitrary code execution
> under the sshd pseudo-user account restricted within the chroot jail
> /var/empty, or under the logged in user account. Reference:
> http://www.openssh.com/txt/buffer.adv

So is there no urgent need to include these fixes?


Cheers,

Dries
--
Dries Schellekens
email: gwyllion_(_at_)_ulyssis_(_dot_)_org

Prev by Date: eap in -current not working.
Next by Date: question about patch submission (25KB patch filesize)
Previous by thread: eap in -current not working.
Next by thread: question about patch submission (25KB patch filesize)
Index(es):
- Date
- Thread

Visit your host, monkey.org