Yesterday evening, major announcement: all OpenSSH versions prior to 3.7 contain a vulnerability (potential remote root exploit) due to an error in buffer management code; version 3.7 fixes this problem. So I go through all the Unix machines I administrate and, for each one, upgrade the OpenSSH to one that does not have the problem.
This morning, major announcement: all OpenSSH versions prior to 3.7.1 contain a vulnerability (potential remote root exploit) due to an error in buffer management code; version 3.7.1 fixes this problem. So I go through all the Unix machines I administrate and, for each one, upgrade the OpenSSH to one that does not have the problem.
Déjà vu?