Changes since OpenSSH 4.3:
Security bugs resolved in this release:
* Fix a pre-authentication denial of service found by Tavis Ormandy,
that would cause sshd(8) to spin until the login grace time
expired.
* Fix an unsafe signal hander reported by Mark Dowd. The
OpenSSL Security Advisory [28th September 2006]
New OpenSSL releases are now available to correct four security
issues.
ASN.1 Denial of Service Attacks (CVE-2006-2937, CVE-2006-2940)
==
Vulnerability
-
Dr. S. N. Henson re
2 matches
Mail list logo
