Version 4.4 (and 4.4p1) of OpenSSH was released yesterday. Among other things, it fixed the vulnerability announced earlier this week (CVE-2006-4924) in the CRC compensation attack detector that allowed for a denial of service if using SSH protocol verion 1 (which hopefully no one is using anymore anyway due to the other weaknesses in the protocol).
See http://www.openssh.com for more details. I will be teaching next: Reverse-Engineering Malware: Malware Analysis Tools and Techniques - SANS Cyber Defence Australia 2022 |
Jim 423 Posts ISC Handler Sep 28th 2006 |
Thread locked Subscribe |
Sep 28th 2006 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!