Return to errata38.html CVS log | Up to [local] / www |
version 1.19, 2006/10/12 07:05:21 | version 1.20, 2006/10/12 07:10:42 | ||
---|---|---|---|
|
|
||
to spin until the login grace time expired. | to spin until the login grace time expired. | ||
An unsafe signal handler (found by Mark Dowd) that is vulnerable to a race condition | An unsafe signal handler (found by Mark Dowd) that is vulnerable to a race condition | ||
that could be exploited to perform a pre-authentication denial of service. | that could be exploited to perform a pre-authentication denial of service. | ||
<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4924">CVE-2006-4924</a>, | |||
<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5051">CVE-2006-5051</a> | |||
<br> | <br> | ||
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/020_ssh2.patch"> | <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/020_ssh2.patch"> | ||
A source code patch exists which remedies this problem</a>.<br> | A source code patch exists which remedies this problem</a>.<br> |