Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: OpenSSH 4.4 (and 4.4p1) released SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
OpenSSH 4.4 (and 4.4p1) released
Version 4.4 (and 4.4p1) of OpenSSH was released yesterday.  Among other things, it fixed the vulnerability announced earlier this week (CVE-2006-4924) in the CRC compensation attack detector that allowed for a denial of service if using SSH protocol verion 1 (which hopefully no one is using anymore anyway due to the other weaknesses in the protocol).

See http://www.openssh.com for more details. I will be teaching next: Reverse-Engineering Malware: Malware Analysis Tools and Techniques - SANS Rocky Mountain Fall 2021

Jim

423 Posts
ISC Handler
Sep 28th 2006

Sign Up for Free or Log In to start participating in the conversation!