Slackware Advisory SSA:2003-260-01 OpenSSH Updated Again Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2003-260-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2003-260-01

Insight

Upgraded OpenSSH 3.7.1p1 packages are available for Slackware 8.1, 9.0 and -current. These fix additional buffer management errors that were not corrected in the recent 3.7p1 release. The possibility exists that these errors could allow a remote exploit, so we recommend all sites running OpenSSH upgrade to the new OpenSSH package immediately.

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2003-273-01 OpenSSL security update
Slackware Advisory SSA:2005-310-02 KOffice/KWord
Slackware Advisory SSA:2005-251-04 php5 in Slackware 10.1
Slackware Advisory SSA:2004-305-01 apache+mod_ssl
Slackware Advisory SSA:2004-266-03 Mozilla

Slackware Advisory SSA:2003-260-01 OpenSSH updated again

Take action and discover your vulnerabilities