mismatch against version of openssl, letter version brokeness

Markus Friedl markus at openbsd.org
Sun May 26 17:59:27 EST 2002

On Sat, May 25, 2002 at 03:13:43PM -0500, Phil Howard wrote:
> What risk exists in changing the check for the matching version of
> openssl so that the final letter part of the version (e.g. 0.9.6c
> vs. 0.9.6d) is ignored?  Are there any security vulnerabilities in
> such a thing?

the API is not stable between the releases.

More information about the openssh-unix-dev mailing list