USN-612-7: OpenSSH update

05-20-2008

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

USN-612-7: OpenSSH update

Referenced CVEs:
CVE-2008-0166

Description:
=========================================================== Ubuntu Security Notice USN-612-7 May 20, 2008 openssh update CVE-2008-0166 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: openssh-server 1:4.2p1-7ubuntu3.4 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-612-2 introduced protections for OpenSSH, related to the OpenSSL vulnerabilities addressed by USN-612-1. This update provides the corresponding updates for OpenSSH in Ubuntu 6.06 LTS. While the OpenSSL in Ubuntu 6.06 is not vulnerable, this update will block weak keys generated on systems that may have been affected themselves. Original advisory details: A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH, OpenVPN and SSL certificates.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

xdg-user-dirs-gtk-update(1) User Commands xdg-user-dirs-gtk-update(1) NAME
xdg-user-dirs-gtk-update - Graphical User Interface for xdg-user-dirs-update. SYNOPSIS
xdg-user-dirs-gtk-update DESCRIPTION
xdg-user-dirs-gtk-update is automatically run on login to the GNOME desktop environment to aid in the management of the locale specific XDG User Directories. Should the user be starting a session that is using a different locale to that which was used to create the original XDG User Directories, then the user will be prompted to make a decision on whether to update the XDG User Directories to the new locale or leave them unchanged. The original locale that was used to create the initial set of XDG User Directories on first login is stored in the file ${XDG_CON- FIG_HOME}/user-dirs.locale. Should the user decide to update to the current locale, then xdg-user-dirs-update will be used to perform the desired action. ENVIRONMENT VARIABLES
See environ(5) for descriptions of the following environment variables: HOME. Other environment variable that are used are: XDG_CONFIG_HOME Base directory for storge of XDG configuration files. Defaults to ${HOME}/.config FILES
The following files are used by this application: /usr/bin/xdg-user-dirs-gtk-update Application to manage updates to user's XDG User Directories ${XDG_CONFIG_HOME}/user-dirs.locale Locale used in the initial creation of the current XDG User Directories and what they map to. ${XDG_CONFIG_HOME}/user-dirs.dirs Location of the user-specific configuration including the current list of directories and what they map to. ATTRIBUTES
See attributes(5) for descriptions of the following attributes: +-----------------------------+-----------------------------+ | ATTRIBUTE TYPE | ATTRIBUTE VALUE | +-----------------------------+-----------------------------+ |Availability |SUNWxdg-user-dirs-gtk | +-----------------------------+-----------------------------+ |Interface stability |Uncommitted | +-----------------------------+-----------------------------+ SEE ALSO
More information can be found at: http://www.freedesktop.org/wiki/Software/xdg-user-dirs xdg-user-dirs-update(1), xdg-user-dir(1), attributes(5) NOTES
Written by Darren Kenny, Sun Microsystems Inc, 2008 SunOS 5.11 03 Apr 2008 xdg-user-dirs-gtk-update(1)

Security Advisories (RSS)

USN-612-7: OpenSSH update

LEARN ABOUT OPENSOLARIS

xdg-user-dirs-gtk-update