[CentOS] RH's servers breached

Tue Aug 26 09:17:53 UTC 2008
Ian Forde <ian at duckland.org>

On Tue, 2008-08-26 at 13:54 +1200, Tony Wicks wrote:
> >> >
> >> >So there are new packages anyway in spite of the other bits.
> >> 
> >> Hi all, have I missed something or is there a CentOS update for 5x but
> none
> >> for 4x ? I've made sure my mirror is synced and looked around at a few
> >> others but can't seem to see an update ?
> >
> >I just fired up my 4.6 and did yum update. No ssh packages, so the
> >problem is not yours.
> Do any of the maintainers have a comment on the 4x SSH update availability ?
> I have a couple of SSH bastion servers that I have shut down until the
> update is out just in case so was wondering as to when it would turn up.

I wouldn't worry about it too much unless there are unrelated security
fixes.  The SSH updates are against 4.7, so it would most likely be the
case that your current 4.6-based sshd package is still pretty solid...
The issue was against the then-current sshd packages... which would have
been issued after the ones you're currently using...