Segfault on invalid SSH keys.
Steve Kemp
steve at steve.org.uk
Thu Oct 15 16:59:23 AEDT 2015
> > Via fuzzing I discovered a key which will cause
> > the ssh-keygen process to segfault when fingerprinting
> > via:
> >
> > ssh-keygen -l -f bogus.key
>
> Could you please share the key that causes this problem?
The key was attached to the referenced bug report, but
please find attached a copy to this mail.
Usage is:
$ gunzip crash.min.pub.gz
$ ssh-keygen -l -f ./crash.min.pub
Segmentation fault
(It also crashes when running "ssh -i x.pub user at host", but that's
less interesting.)
Steve
--
http://www.steve.org.uk/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: crash.min.pub.gz
Type: application/gzip
Size: 41 bytes
Desc: not available
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20151015/a4dce1b0/attachment.bin>
More information about the openssh-unix-dev
mailing list