Summary: | app-shells/rssh arbitrary command execution | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sune Kloppenborg Jeppesen (RETIRED) <jaervosz> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | enhancement | CC: | maze |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | All | ||
URL: | http://www.securityfocus.com/archive/1/383046/2004-11-30/2004-12-06/0 | ||
Whiteboard: | B1 [glsa] jaervosz | ||
Package list: | Runtime testing required: | --- |
Description
Sune Kloppenborg Jeppesen (RETIRED)
2004-11-29 07:35:13 UTC
*** This bug has been marked as a duplicate of 72815 *** Thos two bugs are likely to get resolved at different times. Reopening and using this bug to track rssh. the debian people are talking of just punting it from their repo since the upstream author has already said he's pretty much abandoned the package due to lack of time Opening up this is public now. if it's vulnerable and abandoned by upstream, we should punt it as well. hard masked in package.mask. GLSA 200412-01 masks rssh Bug kept open since it's still in the tree vapier, max : feel free to bump and remove package mask. Should be released as a GLSA 200412-01 update. 2.2.3 now in portage Thx SpanKY. GLSA 200412-01 updated. |