[Bug 1291] aes256-ctr, aes192-ctr, arcfour256 broken with OpenSSL 0.9.8e

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Mar 13 21:15:16 EST 2007


http://bugzilla.mindrot.org/show_bug.cgi?id=1291





------- Comment #11 from dtucker at zip.com.au  2007-03-13 21:15 -------
Created an attachment (id=1252)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1252&action=view)
key_len fix for Protocol 1 3des cipher

Juan Gallego points out that this also affects the Protocol 1 3des
cipher,  which causes this:

debug2: cipher_init: set keylen (16 -> 32)
debug1: Installing crc compensation attack detector.
Disconnecting: Corrupted check bytes on input.

This is what Corinna saw on Cygwin
(http://lists.mindrot.org/pipermail/openssh-unix-dev/2007-March/025179.html)
but I got the wrong cipher in my suggested workaround.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.


More information about the openssh-bugs mailing list