Bug#833823: CVE-2016-6515: CPU consumption via auth_password

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#833823: CVE-2016-6515: CPU consumption via auth_password
From: Guido Günther <agx@sigxcpu.org>
Date: Tue, 9 Aug 2016 07:11:59 +0200
Message-id: <[🔎] 20160809051159.GA8049@bogon.m.sigxcpu.org>
Reply-to: Guido Günther <agx@sigxcpu.org>, 833823@bugs.debian.org

Source: openssh
Severity: important
Version: 1:7.3p1-1

Hi,
Openssh is affected by this issue:

     https://security-tracker.debian.org/tracker/CVE-2016-6515

Cheers,
 -- Guido


-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'stable-updates'), (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.6.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Reply to:

Prev by Date: Wheezy update of openssh?
Next by Date: Processed: found 833823 in 1:7.2p2-8, fixed 833823 in 1:7.3p1-1
Previous by thread: Re: Wheezy update of openssh?
Next by thread: Processed: found 833823 in 1:7.2p2-8, fixed 833823 in 1:7.3p1-1
Index(es):
- Date
- Thread