Patched images for buffer vulnerability now available

Images that have been patched against CERT vulnerability CA-2003-24, known as the "OpenSSH buffer management bug" (announced on 9/16/2003 and revised on 9/17/2003), are now available for AIX 5.1 and AIX 5.2. The names of these images are:
openssh361p2_51_patch.tar.Z, and
openssh361p2_52_patch.tar.Z, respectively.

These images are built with the Open Source code for version 3.6.1p2 of OpenSSH.

Posted by Denise Genty 2003-09-18