OpenSSH Security Advisory (adv.token)

Anders Nordby anders at fix.no
Tue Apr 23 16:49:02 EST 2002


Hi,

On Sat, Apr 20, 2002 at 11:39:31PM -0400, Niels Provos wrote:
> 2. Impact:
> 
>         Remote users may gain privileged access for OpenSSH < 2.9.9
> 
>         Local users may gain privileged access for OpenSSH < 3.3
> 
>         No privileged access is possible for OpenSSH with
> 	UsePrivsep enabled.

OpenSSH 3.3? Is that a typo, or is it not ready yet? It's not on
ftp.openbsd.org.

Cheers,

-- 
Anders.



More information about the openssh-unix-dev mailing list