[Bug 213640] security/vuxml: Security vulnerability in security/openssh-portable (CVE-2016-8858)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Oct 20 09:47:48 UTC 2016
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=213640
Bug ID: 213640
Summary: security/vuxml: Security vulnerability in
security/openssh-portable (CVE-2016-8858)
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Keywords: security
Severity: Affects Many People
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: vlad-fbsd at acheronmedia.com
CC: bdrewery at FreeBSD.org, ports-secteam at FreeBSD.org
CC: ports-secteam at FreeBSD.org
There is a memory exhaustion bug in key exchange process of OpenSSH.
* CVE assignment:
http://seclists.org/oss-sec/2016/q4/191
* Relevant upstream log:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list