openSUSE 10 Security Update : openssh (openssh-5149)
Medium Nessus Plugin ID 31843
SynopsisThe remote openSUSE host is missing a security update.
DescriptionA flaw in the X forwarding code of openssh allowed malicious users to steal the X access credentials of other users (CVE-2008-1483).
Due to another flaw users could bypass the option 'ForceCommand' (CVE-2008-1657).
SolutionUpdate the affected openssh packages.