security flaw
Certain Red Hat Enterprise Linux RHEL 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification Trojan Horse that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not...