5 replies to this topic

[zoheb]

Hii,

I am new to openbsd. Can someone tell me how to upgrade openssh 4.5 to openssh 5.7 +

Current ssh (4.5) is vulnerable to :
openssh-server Forced Command Handling Information Disclosure Vulnerability

Can you please provide me with some solution to upgrade ssh on openBSD 4.0?

There are nice steps involved here but with these steps, I need to update my ssh linearly like from 4.5 to 4.6 to 4.8 and then apply the patch and then 4.9 till 6.0 version.

http://www.openssh.org/openbsd.html

Last question would be, the above link states the steps to install patch while updating openssh on OpenBSD 4.3, 4.2 or 4.1, Do I need the apply this patch on openBSD 4.0 too ?

[+BudMan]

4.0? Really - that's from what late 2006? So like 7 year old release, why not just update to the current 5.1?

[zoheb]

Currently our Firewall is deployed on openBSD 4.0. Can't take risks for upgrading the server. Just needs to upgrade openSSH to resolve the vulnerability.

Thanks

[ChuckFinley]

Thats the only thing your worried about? lol I would have thought it would be a case of yum install openssh I think...

[+BudMan]

So your 7 year firewall OS and the only exploit your worried about is running 7 year old version of ssh.

From looking at your patch link, you sure current will even run on that old of OS? They show patches for 4.1 starting on 4.9, then then again for 5.2 on like 4.4 and 4.3.

Not clear how to read that if you wanted to run say 5.2 on 4.2 or 4.1, etc.. So why are patches needed for only specific older versions, but versions before that work fine? Thats not how I would read it, I would read it as min required to run that version is X, etc.

Wonder if I could even find 4.0 to download and install?

[Miuku.]

http://ftp.nluug.nl/pub/OpenBSD/

They have like every OpenBSD for the last 11 years