[Bug 231047] [NEW] ssh-vulnkey needs to be backported to Ubuntu 6.06 LTS

Launchpad Bug Tracker 231047 at bugs.launchpad.net
Mon Jun 9 21:49:24 BST 2008

*** This bug is a security vulnerability ***

You have been subscribed to a public security bug:

Vulnerable ssh keys expose systems to attack that don't have the openssl
PRNG vulnerability.  The vulnerable key scanning tools such as ssh-
vulnkey need to be backported to supported releases.

Futher, it would be helpful to make a statically compiled version
downloadable via http so non debian/ubuntu administrators can scan their
systems' authorized_keys and other files for vulnerable keys introduced
by debian/ubuntu users.

** Affects: openssh (Ubuntu)
     Importance: Undecided
         Status: Fix Released

ssh-vulnkey needs to be backported to Ubuntu 6.06 LTS
You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu.

More information about the Ubuntu-server-bugs mailing list