Releases

frugalware-0.8 (Kalgan)
Mar 11, 2008

frugalware-0.7 (Sayshell)
Oct 13, 2007

frugalware-0.6 (Terminus)
Mar 22, 2007

frugalware-0.5 (Siwenna)
Sep 14, 2006

frugalware-0.4 (Wanda)
Mar 30, 2006

frugalware-0.3 (Trantor)
Oct 13, 2005

frugalware-0.2 (Aurora)
Apr 28, 2005

frugalware-0.1 (Genesis)
Nov 02, 2004

RSS

Donations

Donate to support our development efforts.

Recent updates
rox-extra/menu
005-1-x86_64
rox-extra/mem
2.1.5-1-x86_64
rox-extra/mail
0.3.8-1-x86_64
rox-extra/load
2.1.4-1-x86_64
rox-extra/lithium
006-1-x86_64
rox-extra/hdd-temp
0.2.3-1-x86_64
rox-extra/freefs
2.1.8-1-x86_64
rox-extra/devtray
0.4.1-1-x86_64
rox-extra/find
007-1-x86_64
rox-extra/diff
2.1.4-1-x86_64

RSS
Languages
Change language | Change language | Change language | Change language | Change language | Change language | Change language
Information
Go Frugalware, Go
Valid XHTML 1.0!
Valid CSS!
Valid RSS!
Server information
Uptime:
81 day(s) 19 h 26 m 27 s
FSA435 - openssh
Package:openssh
Date:2008-04-25
Vulnerable version:4.7p1-4kalgan1
Unaffected version:4.7p1-4kalgan2
Bug tracker entry:http://bugs.frugalware.org/task/2961
CVEs:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1657
Description:A weakness has been reported in OpenSSH, which can be exploited by malicious, local users to bypass certain security restrictions. The weakness is caused due to the improper implementation of the "ForceCommand" directive. This can be exploited to execute arbitrary commands via the ~/.ssh/rc file even if a "ForceCommand" directive is in effect.
© 2003-2008. The Frugalware Developer Team