projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a3a7e0d) | patch
openssh: Unregister the KEXINIT handler after message has been
authorPeter Wagner <tripolar@gmx.at>
Mon, 17 Oct 2016 19:26:26 +0000 (21:26 +0200)
committerPeter Wagner <tripolar@gmx.at>
Mon, 17 Oct 2016 19:26:26 +0000 (21:26 +0200)
commitafb706d146832ba6fb41a40eb0e408f7c81a3fc2
tree51e21c08488efa9fb1e23ccbec500b7ba74d4e89tree | snapshot
parenta3a7e0dd6530d00c3e3320b88ed9e930feb1e2a8commit | diff
openssh: Unregister the KEXINIT handler after message has been
received. Otherwise an unauthenticated peer can repeat the KEXINIT and cause
allocation of up to 128MB -- until the connection is closed. Reported by
shilei-c at 360.cn

https://github.com/openssh/openssh-portable/commit/ec165c392ca54317dbe3064a8c200de6531e89ad

Signed-off-by: Peter Wagner <tripolar@gmx.at>
net/openssh/Makefile diff | blob | history
net/openssh/patches/101-Unregister-the-KEXINIT-handler-after-receive.patch [new file with mode: 0644] blob
Mirror of packages feed