Red Hat Bugzilla – Bug 441066
OpenSSH 5.0p1 was released
Last modified: 2008-04-08 02:55:35 EDT
Description of problem:
Changes since OpenSSH 4.9 [Security]: CVE-2008-1483: Avoid possible hijacking
of X11-forwarded connections by refusing to listen on a port unless all address
families bind successfully.
Version-Release number of selected component (if applicable):
openssh-5.0p1-1 or later... ;-)
Robert, as you have noticed, the only change between 4.9 and 5.0 is the patch
that is used in Fedora packages for a while. See:
I don't think this should block F9Target.
If the patch is already in Fedora, you're right.
I plan to upgrade to openssh-5.0p1 after F9 is released - we are already past
feature freeze so a few weeks in testing updates seem to me more appropriate.
After reviewing the changes I decided to update it in rawhide.