-
Committer:
Bazaar Package Importer
-
Author(s):
Kees Cook
-
Date:
2008-01-09 12:40:01 UTC
-
Revision ID:
james.westby@ubuntu.com-20080109124001-q5b0ws06uc0b7rfn
Tags: 1:4.3p2-5ubuntu1.1
* SECURITY UPDATE: trusted cookie leak when untrusted cookie cannot be
generated.
* clientloop.c: Applied patch according to openssh upstream (LP: #162171),
thanks to Stephan Hermann.
* References:
CVE-2007-4752
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=444738
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/clientloop.c.diff?r1=1.180&r2=1.181