Recent OpenSSL vulnerability require rebuild of OpenSSH

Albert Chin openssh-unix-dev at thewrittenword.com
Wed Oct 1 12:01:19 EST 2003


We have OpenSSH built against a static version of the OpenSSL library.
Do the recent OpenSSL vulnerabilities necessitate a rebuild of
OpenSSH?
  http://www.openssl.org/news/secadv_20030930.txt

>From the description of the four bugs, I'm inclined to think not.

-- 
albert chin (china at thewrittenword.com)




More information about the openssh-unix-dev mailing list