Bug#906236: openssh: CVE-2018-15473: delay bailout for invalid authenticating user until after the packet
Chris Lamb wrote:
> > openssh: CVE-2018-15473: delay bailout for invalid authenticating
> > user until after the packet
>
> I've started on a patch for wheezy (WIP attached).
>
> Would the security team be interested in one for stretch? If so, I can
> return with a proposed debdiff.
Gentle ping on this?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-
Reply to: