Apply upstream fix for CVE-2016-8858:
Unregister the KEXINIT handler after message has been received. Otherwise an unauthenticated peer can repeat the KEXINIT and cause allocation of up to 128MB -- until the connection is closed. Reported by shilei-c at 360.cn Obtained from: OpenBSD
This commit is contained in:
Reference in New Issue
Block a user