Error in 7.1p2 announcement?
cjwatson at debian.org
Fri Jan 15 02:23:08 AEDT 2016
The 7.1p2 announcement (http://www.openssh.com/txt/release-7.1p2) says:
* SECURITY: Eliminate the fallback from untrusted X11-forwarding
to trusted forwarding for cases when the X server disables
the SECURITY extension. Reported by Thomas Hoger.
However, as far as I can see, this change is not in the V_7_1_P2 tag in
git, or in the released tarball.
Colin Watson [cjwatson at debian.org]
More information about the openssh-unix-dev