StatementThis issue was addressed in Red Hat Enterprise Linux 2.1, 3 and 4: https://rhn.redhat.com/errata/CVE-2006-0225.html https://www.redhat.com/security/data/cve/CVE-2006-0225.html Issue was fixed upstream in version 4.3. The openssh packages in Red Hat Enterprise Linux 5 are based on the fixed upstream version and were not affected by this flaw.
Red Hat Security Errata
|Red Hat Enterprise Linux version 4 (openssh)||RHSA-2006:0044||2006-03-07|
|Red Hat Enterprise Linux version 3 (openssh)||RHSA-2006:0298||2006-07-20|
|Red Hat Enterprise Linux version 2.1 (openssh)||RHSA-2006:0698||2006-09-29|