Summary: | <net-misc/openssh-7.3_p1-r7: Memory exhaustion due to unregistered KEXINIT handler after receiving message | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | base-system, clabbe.montjoie |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=1384860 | ||
Whiteboard: | A3 [glsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2016-10-17 12:43:54 UTC
commit 4a9ab68a607415d932b524eab2f523d1e9ce77e1 Author: Patrick McLean <chutzpah@gentoo.org> Date: Mon Oct 17 10:48:45 2016 -0700 net-misc/openssh: Revision bump, add patch to fix a preauth memory consumption issue Gentoo-Bug: 597360 Package-Manager: portage-2.3.2 Stabilization of this should be fine. @arches, please stabilize: =net-misc/openssh-7.3_p1-r7 amd64 stable x86 stable Stable on alpha. Stable for HPPA PPC64. arm stable ppc stable sparc stable ia64 stable. Maintainer(s), please cleanup. arm stable, all arches done. This issue was resolved and addressed in GLSA 201612-18 at https://security.gentoo.org/glsa/201612-18 by GLSA coordinator Aaron Bauman (b-man). @maintainer(s), reopened for cleanup. Cleanup PR: https://github.com/gentoo/gentoo/pull/3405 Cleaned up via 72c64a401d9595aa1da76ae25eda2b9e13b5234a *** Bug 606144 has been marked as a duplicate of this bug. *** |