[Bug 2040] Downgrade attack vulnerability when checking SSHFP records

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Jan 28 23:08:25 EST 2014


Ondřej Caletka <ondrej at caletka.cz> changed:

           What    |Removed                     |Added
   Attachment #2184|0                           |1
        is obsolete|                            |

--- Comment #8 from Ondřej Caletka <ondrej at caletka.cz> ---
Created attachment 2403
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2403&action=edit
Handle future digest types correctly

The same patch, only rebased to OpenSSH 6.4p1 codebase.
Hoping these patche would be eventually make it to a release. :)

You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

More information about the openssh-bugs mailing list