MFV r308196:

Fix OpenSSH remote Denial of Service vulnerability.

Security:	CVE-2016-8858
This commit is contained in:
Xin LI 2016-11-02 06:49:25 +00:00
commit 56e6c4251c
Notes: svn2git 2020-12-20 02:59:44 +00:00
svn path=/head/; revision=308197

View File

@ -468,6 +468,7 @@ kex_input_kexinit(int type, u_int32_t seq, void *ctxt)
if (kex == NULL)
return SSH_ERR_INVALID_ARGUMENT;
ssh_dispatch_set(ssh, SSH2_MSG_KEXINIT, NULL);
ptr = sshpkt_ptr(ssh, &dlen);
if ((r = sshbuf_put(kex->peer, ptr, dlen)) != 0)
return r;