Users login

Create an account »


Users login

Home » Security Advisories» Fedora » OpenSSH vulnerabilities

OpenSSH vulnerabilities

This security update fixes CAN-2005-2797 and CAN-2005-2798 and resolves a problem with X forwarding binding only on IPv6 address on certain circumstances.

  • Vendor: Fedora
  • Vendor ID: FEDORA-2005-860
  • Date: September 12, 2005

Fedora Update Notification

Product : Fedora Core 4
Name : openssh
Version : 4.2p1
Release : fc4.1
Summary : The OpenSSH implementation of SSH protocol versions 1 and 2.
Description :
OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. SSH
replaces rlogin and rsh, to provide secure encrypted communications
between two untrusted hosts over an insecure network. X11 connections
and arbitrary TCP/IP ports can also be forwarded over the secure
channel. Public key authentication may be used for "passwordless"
access to servers.

This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both.

Update Information:

This security update fixes CAN-2005-2797 and CAN-2005-2798
and resolves a problem with X forwarding binding only on
IPv6 address on certain circumstances.
As it is an upgrade to a newer upstream release there is a
small change in interoperability with ssh clients older than
3.5p1 if they are configured so they insist on compression.
If interoperability with such clients is required, the
"Compression" option must be set to "yes".

* Wed Sep 7 2005 Tomas Mraz 4.2p1-fc4.1
- upgrade to a new upstream version
- don't use X11 port which can't be bound on all IP families (#163732)

This update can be downloaded from:

00805dac96c841cbfd40170022190619 SRPMS/openssh-4.2p1-fc4.1.src.rpm
0e3920148be386e1ad059a36203a2ad4 ppc/openssh-4.2p1-fc4.1.ppc.rpm
b43f94f610df46c8d2906a1fd9c66426 ppc/openssh-clients-4.2p1-fc4.1.ppc.rpm
5cdd6f0de550be0100118c1e1edda6be ppc/openssh-server-4.2p1-fc4.1.ppc.rpm
72b2eb642aab64911f129c2f1bbd7c87 ppc/openssh-askpass-4.2p1-fc4.1.ppc.rpm
7dcfd13cedac17596625d9131bb0ec92 ppc/openssh-askpass-gnome-4.2p1-fc4.1.ppc.rpm
3f8eeae5e885288ab0eabba60eab049f ppc/debug/openssh-debuginfo-4.2p1-fc4.1.ppc.rpm
bc455ca2e0efba438e17b2ee3f558ff2 x86_64/openssh-4.2p1-fc4.1.x86_64.rpm
e92b67a22a9a86f710ba6310de3ba646 x86_64/openssh-clients-4.2p1-fc4.1.x86_64.rpm
5b676585808c1d3dccd4220c13314507 x86_64/openssh-server-4.2p1-fc4.1.x86_64.rpm
eb91cc04ca4e8a72a271a555d40c023b x86_64/openssh-askpass-4.2p1-fc4.1.x86_64.rpm
ab86ad7914bbf360be0d2356e3727c6d x86_64/openssh-askpass-gnome-4.2p1-fc4.1.x86_64.rpm
afb0acbb94a568463662ea4af55f4cb6 x86_64/debug/openssh-debuginfo-4.2p1-fc4.1.x86_64.rpm
8863fa64f0bf415de311407840f6ad2d i386/openssh-4.2p1-fc4.1.i386.rpm
1ab4c1ff99c6ec2975510ad811beeb41 i386/openssh-clients-4.2p1-fc4.1.i386.rpm
8402e25877a6e0d78d960ce53a44250d i386/openssh-server-4.2p1-fc4.1.i386.rpm
e8ff043f0383a740f391b4c71a4b869a i386/openssh-askpass-4.2p1-fc4.1.i386.rpm
67991f582615c924a529eb63b9910d29 i386/openssh-askpass-gnome-4.2p1-fc4.1.i386.rpm
3876419031aabbfe4aecc5d1e82dfa11 i386/debug/openssh-debuginfo-4.2p1-fc4.1.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.


Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »