** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-5161
** Summary changed:
- Security flaw in openSSH prior to 5.2
+ CVE-2008-5161: OpenSSH CBC plaintext recovery
--
CVE-2008-5161: OpenSSH CBC plaintext recovery
https://bugs.launchpad.net/bugs/379329
You received this bug no
** Changed in: openssh (Ubuntu)
Importance: Undecided => Low
** Changed in: openssh (Ubuntu)
Status: New => Confirmed
--
Security flaw in openSSH prior to 5.2
https://bugs.launchpad.net/bugs/379329
You received this bug notification because you are a member of Ubuntu
Bugs, which is sub
It appears that there's no need to backport a new version of OpenSSH. As
you can see here: http://www.openssh.com/txt/cbc.adv you only need to
add this line:
Ciphers aes128-ctr,aes256-ctr,arcfour256,arcfour,aes128-cbc,aes256-cbc
to ssh_config and sshd_config and restart the daemon.
Also:
The seve
** Visibility changed to: Public
--
Security flaw in openSSH prior to 5.2
https://bugs.launchpad.net/bugs/379329
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubun
