[TSSA-2004:6990-01] Updated openssh packages fix a bug in scp
- ---------------------------------------------------------------------
Progeny Transition Service Security Advisory
Synopsis: Updated openssh packages fix a bug in scp
Advisory ID: TSSA-2004:6990-01
Issue date: 2004-08-24
Updated on: 2004-08-24
Product: Red Hat Linux 7.2, 7.3, 8.0, 9
Keywords:
Cross references:
Obsoletes:
CVE Names: CAN-2004-0175
- ---------------------------------------------------------------------
1. Topic:
Updated OpenSSH packages are available to fix a bug in scp.
2. Relevant releases/architectures:
Red Hat Linux 7.2 - i386
Red Hat Linux 7.3 - i386
Red Hat Linux 8.0 - i386
Red Hat Linux 9 - i386
3. Problem description:
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine.
A directory-traversal vulnerability in scp for OpenSSH before 3.4p1
allows remote malicious servers to overwrite arbitrary files. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
Progeny Transition Service Security Advisory
Synopsis: Updated openssh packages fix a bug in scp
Advisory ID: TSSA-2004:6990-01
Issue date: 2004-08-24
Updated on: 2004-08-24
Product: Red Hat Linux 7.2, 7.3, 8.0, 9
Keywords:
Cross references:
Obsoletes:
CVE Names: CAN-2004-0175
- ---------------------------------------------------------------------
1. Topic:
Updated OpenSSH packages are available to fix a bug in scp.
2. Relevant releases/architectures:
Red Hat Linux 7.2 - i386
Red Hat Linux 7.3 - i386
Red Hat Linux 8.0 - i386
Red Hat Linux 9 - i386
3. Problem description:
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine.
A directory-traversal vulnerability in scp for OpenSSH before 3.4p1
allows remote malicious servers to overwrite arbitrary files. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
