Package: openssh Version: 1:4.3p2-3 Severity: important Tags: security patch A denial of service (cpu consumption) vulnerability has been found in openssh if protocol 1 is enabled. See http://secunia.com/advisories/22091/ for details and patches. AFAICS protocol 1 is disabled by default, therefore severity important. If I am mistaken (sarge?), please adjust to grave.