This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

openSSH Vulnerability

From: Bruce Halco <bruce at halcomp dot com>
To: cygwin at cygwin dot com
Date: Wed, 20 Mar 2019 09:13:21 -0400
Subject: openSSH Vulnerability

openSSH 7.9 is subject to vulnerability CVE-2019-6111. This has beenfixed in at least some distributions, Debian at least.

As the cygwin openSSH files are all dated October, 2018, it seems clearthat the fix has not yet been applied to cygwin.


Are there plans to address this?

Thanks.

Bruce




--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

Follow-Ups:
- Re: openSSH Vulnerability
  - From: Corinna Vinschen

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]