Slackware64-13.37 ChangeLog (2014-03-28)

Fri Mar 28 03:43:11 UTC 2014

  • patches/packages/openssh-5.9p1-x86_64-3_slack13.37.txz
    This update fixes a security issue when using environment passing with
    a sshd_config(5) AcceptEnv pattern with a wildcard. OpenSSH could be
    tricked into accepting any environment variable that contains the
    characters before the wildcard character.
    For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532
    (* Security fix *)
  • news/2014/03/28/slackware64-13.37-changelog.txt
  • Last modified: 12 months ago
  • by Giuseppe Di Terlizzi