Release Engineering Status Report
Ceri Davies
setantae at submonkey.net
Tue Sep 16 12:36:27 PDT 2003
On Tue, Sep 16, 2003 at 12:26:59PM -0700, Kris Kennaway wrote:
> On Tue, Sep 16, 2003 at 02:16:17PM -0500, Craig Boston wrote:
> > On Tuesday 16 September 2003 12:14 pm, Ruben de Groot wrote:
> > > Fortunately, there's allready a patch in the source tree:
> > >
> > > http://www.freebsd.org/cgi/cvsweb.cgi/src/crypto/openssh/buffer.c.diff?r1=1
> > >.1.1.6&r2=1.1.1.7&f=h
> >
> > Yes, fortunately the patch is there. I noticed however that in the version
> > committed to the RELENG_4_8 branch, RCSID wasn't changed, so it's not
> > possible to use ident to tell if your libssh needs to be patched or not (both
> > old and new say 1.16)... Was that an oversight or should I be using some
> > other method to determine if I'm running a vulnerable version or not?
>
> Err, the RCS ID is updated automatically upon CVS checkin..is that
> really what you mean?
I think so.
In RELENG_4 at least, there is no $FreeBSD$ tag in that file.
Ceri
--
User: DO YOU ACCEPT JESUS CHRIST AS YOUR PERSONAL LORD AND SAVIOR?
Iniaes: Sure, I can accept all forms of payment.
-- www.chatterboxchallenge.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20030916/aa1469be/attachment.bin
More information about the freebsd-stable
mailing list