[SECURITY] Fedora Core 6 Update: openssh-4.3p2-25.fc6

Tomas Mraz tmraz at redhat.com
Mon Oct 15 19:54:28 UTC 2007

Fedora Update Notification

Product     : Fedora Core 6
Name        : openssh
Version     : 4.3p2
Release     : 25.fc6
Summary     : The OpenSSH implementation of SSH protocol versions 1 and 2
Description :
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine. SSH is intended to replace rlogin and
rsh, and to provide secure encrypted communications between two
untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.

OpenSSH is OpenBSD's version of the last free version of SSH, bringing
it up to date in terms of security and features, as well as removing
all patented algorithms to separate libraries.

This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both.


* Tue Oct  2 2007 Tomas Mraz <tmraz at redhat.com> - 4.3p2-25
- do not fall back on trusted X11 cookies (CVE-2007-4752) (#280471)
* Fri Jul 13 2007 Tomas Mraz <tmraz at redhat.com> - 4.3p2-24
- fixed audit log injection problem (CVE-2007-3102) (#248059)
* Thu Jun 21 2007 Tomas Mraz <tmraz at redhat.com> - 4.3p2-23
- document where the nss certificate and token dbs are looked for
* Wed Jun 20 2007 Tomas Mraz <tmraz at redhat.com> - 4.3p2-22
- experimental support for PKCS#11 tokens through libnss3 (#183423)
* Tue Apr  3 2007 Tomas Mraz <tmraz at redhat.com> - 4.3p2-21
- correctly setup context when empty level requested (#234951)
- and always request default level as returned by getseuserbyname (#231695)

This update can be downloaded from:

c4bbdf05c3ec42791b33aed51106634c5ab4ea96  SRPMS/openssh-4.3p2-25.fc6.src.rpm
c4bbdf05c3ec42791b33aed51106634c5ab4ea96  noarch/openssh-4.3p2-25.fc6.src.rpm
eeafee7ed54d6acafc1853a390e05e73c896faf5  ppc/openssh-server-4.3p2-25.fc6.ppc.rpm
e1d4265aacda1e9b44298cb841a7460d12a8dea2  ppc/openssh-4.3p2-25.fc6.ppc.rpm
30a4319536c7c24c231b68724b7c476365da52e8  ppc/debug/openssh-debuginfo-4.3p2-25.fc6.ppc.rpm
3797e42e4517c34f227244650d540200db14e964  ppc/openssh-clients-4.3p2-25.fc6.ppc.rpm
20f99e79df0ba9cfdfb6756906e3ae376eb9c9d0  ppc/openssh-askpass-4.3p2-25.fc6.ppc.rpm
b36310f377ada7282c203cc701d981689fbeebd7  x86_64/openssh-4.3p2-25.fc6.x86_64.rpm
877916362094d3443b4b1847d85015287bd7e134  x86_64/openssh-clients-4.3p2-25.fc6.x86_64.rpm
8243870ab20446d750a309039a98016495d39940  x86_64/openssh-askpass-4.3p2-25.fc6.x86_64.rpm
a16ba2e453efeb80200139da46a8e747253e6241  x86_64/openssh-server-4.3p2-25.fc6.x86_64.rpm
34774711bb4e15f2c34b05fc6750d4179b21667d  x86_64/debug/openssh-debuginfo-4.3p2-25.fc6.x86_64.rpm
12d01c6072fc4b00adb901915a10a2f7dbed0ead  i386/openssh-askpass-4.3p2-25.fc6.i386.rpm
069c04e6f06ea70f1bd0d92c9716d2787fb7e8c9  i386/debug/openssh-debuginfo-4.3p2-25.fc6.i386.rpm
fffd8e803de28363b6e7f83baab23cde83d8b22f  i386/openssh-4.3p2-25.fc6.i386.rpm
315c0f591789bc52146b42dc1b60ee947b2faddb  i386/openssh-server-4.3p2-25.fc6.i386.rpm
b517d9b6f741afeb0cab1c75f100292851e8a702  i386/openssh-clients-4.3p2-25.fc6.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.

More information about the Fedora-package-announce mailing list