On Tue, 16 Sep 2003 16:45:05 EDT, [EMAIL PROTECTED] said: > On Tue, 16 Sep 2003 13:13:51 EDT, "Jonathan A. Zdziarski" <[EMAIL PROTECTED] ephant.com> said: > > Does anyone know if this vulnerability is present in the free > > noncommercial ssh distribution from ssh.fi? > > Looking at the relevant code in ssh 3.2.5, it appears not, as the ssh.com code > was already using a temp variable the same way that the openssh code added one.
I have *NOT* looked at the 3.7.1 patch, which I got notice of after I wrote that.
pgp00000.pgp
Description: PGP signature
