cvs commit: src/crypto/openssh-4 session.c

Peter Avalos pavalos at crater.dragonflybsd.org
Sat Apr 19 08:05:53 PDT 2008


pavalos     2008/04/19 08:02:52 PDT

DragonFly src repository

  Modified files:        (Branch: DragonFly_RELEASE_1_12)
    crypto/openssh-4     session.c 
  Log:
  Fix for CVE-2008-1657:
  
  "OpenSSH before 4.9 allows remote authenticated users to bypass the
  sshd_config ForceCommand directive by modifying the .ssh/rc session file."
  
  Obtained-from: OpenBSD
  
  Revision     Changes    Path
  1.1.1.6.2.1  +3 -2      src/crypto/openssh-4/Attic/session.c


http://www.dragonflybsd.org/cvsweb/src/crypto/openssh-4/Attic/session.c.diff?r1=1.1.1.6&r2=1.1.1.6.2.1&f=u





More information about the Commits mailing list