MFC r308197: MFV r308196:

Fix OpenSSH remote Denial of Service vulnerability. Security: CVE-2016-8858
author: delphij <delphij@FreeBSD.org> 2016-11-02 06:56:35 +0000
committer: delphij <delphij@FreeBSD.org> 2016-11-02 06:56:35 +0000
commit: e82e3bc2af43d79504472922cf08e777238426d7 (patch)
tree: 0d88d0e6ddc3e38ac31cbb62dccf48fa5820f5ec
parent: 34df34244cee20a100d1f3a2eaa9f7c667304f6f (diff)
download: FreeBSD-src-e82e3bc2af43d79504472922cf08e777238426d7.zip
FreeBSD-src-e82e3bc2af43d79504472922cf08e777238426d7.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/openssh/kex.c b/crypto/openssh/kex.c
index d371f47..9c9f562 100644
--- a/crypto/openssh/kex.c
+++ b/crypto/openssh/kex.c
@@ -468,6 +468,7 @@ kex_input_kexinit(int type, u_int32_t seq, void *ctxt)
 	if (kex == NULL)
 		return SSH_ERR_INVALID_ARGUMENT;
 
+	ssh_dispatch_set(ssh, SSH2_MSG_KEXINIT, NULL);
 	ptr = sshpkt_ptr(ssh, &dlen);
 	if ((r = sshbuf_put(kex->peer, ptr, dlen)) != 0)
 		return r;
author	delphij <delphij@FreeBSD.org>	2016-11-02 06:56:35 +0000
committer	delphij <delphij@FreeBSD.org>	2016-11-02 06:56:35 +0000
commit	e82e3bc2af43d79504472922cf08e777238426d7 (patch)
tree	0d88d0e6ddc3e38ac31cbb62dccf48fa5820f5ec
parent	34df34244cee20a100d1f3a2eaa9f7c667304f6f (diff)
download	FreeBSD-src-e82e3bc2af43d79504472922cf08e777238426d7.zip FreeBSD-src-e82e3bc2af43d79504472922cf08e777238426d7.tar.gz