Re: zlib && ssh

2002-03-13 Thread Mark Brown
On Wed, Mar 13, 2002 at 04:52:12AM -0600, xbud wrote: > there is currently no working exploit for this bug.. but one will popup > sooner or later. A DoS attack on SSHv2 was posted to bugtraq yesterday. -- "You grabbed my hand and we fell into it, like a daydream - or a fever." pgpCnsoyf5VSn.

Re: zlib && ssh

2002-03-13 Thread xbud
at this very moment in time yes.. if your zlib is up to date.. there is currently no working exploit for this bug.. but one will popup sooner or later. -xbud On Tuesday 12 March 2002 02:19 pm, Martin Hermanowski wrote: > On bugtraq I read something about openssh being vulnerable to the > doube-f

Re: zlib && ssh

2002-03-13 Thread Mark Brown
On Wed, Mar 13, 2002 at 04:52:12AM -0600, xbud wrote: > there is currently no working exploit for this bug.. but one will popup > sooner or later. A DoS attack on SSHv2 was posted to bugtraq yesterday. -- "You grabbed my hand and we fell into it, like a daydream - or a fever." msg05976/pgp

Re: zlib && ssh

2002-03-13 Thread xbud
at this very moment in time yes.. if your zlib is up to date.. there is currently no working exploit for this bug.. but one will popup sooner or later. -xbud On Tuesday 12 March 2002 02:19 pm, Martin Hermanowski wrote: > On bugtraq I read something about openssh being vulnerable to the > doube-

Re: zlib && ssh

2002-03-12 Thread Mark Brown
On Tue, Mar 12, 2002 at 09:19:22PM +0100, Martin Hermanowski wrote: > On my woody boxes, I installed the updated zlib1g from unstable and > restarted sshd. Is this enough to be protected? As far as SSH is concerned (and providing your mirror was up to date enough to have 1:1.1.3-19.1 or later of

Re: zlib && ssh

2002-03-12 Thread Mark Brown
On Tue, Mar 12, 2002 at 09:19:22PM +0100, Martin Hermanowski wrote: > On my woody boxes, I installed the updated zlib1g from unstable and > restarted sshd. Is this enough to be protected? As far as SSH is concerned (and providing your mirror was up to date enough to have 1:1.1.3-19.1 or later of

zlib && ssh

2002-03-12 Thread Martin Hermanowski
On bugtraq I read something about openssh being vulnerable to the doube-free bug. On my woody boxes, I installed the updated zlib1g from unstable and restarted sshd. Is this enough to be protected? Yours, Martin -- PGP/GPG encrypted mail preferred, see header ,-- | Nur tote Fische schwimmen mi

zlib && ssh

2002-03-12 Thread Martin Hermanowski
On bugtraq I read something about openssh being vulnerable to the doube-free bug. On my woody boxes, I installed the updated zlib1g from unstable and restarted sshd. Is this enough to be protected? Yours, Martin -- PGP/GPG encrypted mail preferred, see header ,-- | Nur tote Fische schwimmen m