Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Hi - are there any vulnerabilities in SSH 3.8 that should cause one
to go to 4.x?

Re: 3.8

Quoted text here. Click to load it

Pretty much the only thing is CVE-2006-0225 which is a (more or less)
local scp thing.

You can read the release notes and make your own judgement:
http://www.openssh.com/txt/release -$version where $version is one of
3.8.1p1, 3.9, 4.0, 4.1, 4.2 or 4.3.

Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

Site Timeline