[kwlug-disc] Urgent! - OpenSSH client bug
Khalid Baheyeldin
kb at 2bits.com
Thu Jan 14 12:04:35 EST 2016
Ubuntu just pushed an update a couple of hours earlier today.
SECURITY UPDATE: information leak and overflow in roaming support
- debian/patches/CVE-2016-077x.patch: completely disable roaming option
in readconf.c.
- CVE-2016-0777
- CVE-2016-0778
On Thu, Jan 14, 2016 at 11:03 AM, L.D. Paniak <ldpaniak at fourpisolutions.com>
wrote:
> Apparently there is a bug in OpenSSH client in recent distributions.
> Until a patch is pushed through the usual package management
> routes, the following ssh client configuration change is recommended:
>
> echo 'UseRoaming no' >> /etc/ssh/ssh_config
>
> Affects all OpenSSH 5.4 - 7.1 (Ubuntu 12.04+).
>
> http://undeadly.org/cgi?action=article&sid=20160114142733
>
> Happy patching!
> Lori
>
> _______________________________________________
> kwlug-disc mailing list
> kwlug-disc at kwlug.org
> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>
>
--
Khalid M. Baheyeldin
2bits.com, Inc.
Fast Reliable Drupal
Drupal optimization, development, customization and consulting.
Simplicity is prerequisite for reliability. -- Edsger W.Dijkstra
Simplicity is the ultimate sophistication. -- Leonardo da Vinci
For every complex problem, there is an answer that is clear, simple, and
wrong." -- H.L. Mencken
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20160114/91a3bb48/attachment.htm>
More information about the kwlug-disc
mailing list