[Bug 2933] MaxAuthTries validation incorrect

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Fri Dec 7 14:27:28 AEDT 2018


Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
         Resolution|---                         |FIXED
                 CC|                            |djm at mindrot.org
             Status|NEW                         |RESOLVED

--- Comment #1 from Damien Miller <djm at mindrot.org> ---
This has already been fixed in the openssh-7.7 release via the
following commit:

commit 609d96b3d58475a15b2eb6b3d463f2c5d8e510c0
Author: dtucker at openbsd.org <dtucker at openbsd.org>
Date:   Tue Dec 5 23:59:47 2017 +0000

    upstream commit

    Replace atoi and strtol conversions for integer arguments
    to config keywords with a checking wrapper around strtonum.  This
    prevent and flag invalid and negative arguments to these keywords. 
ok djm@

    OpenBSD-Commit-ID: 99ae3981f3d608a219ccb8d2fff635ae52c17998

You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

More information about the openssh-bugs mailing list