ssh - Remove undocumented roaming support CVE-2016-0777 CVE-2016-0778
authorMatthew Dillon <dillon@apollo.backplane.com>
Thu, 14 Jan 2016 17:06:23 +0000 (09:06 -0800)
committerMatthew Dillon <dillon@apollo.backplane.com>
Thu, 14 Jan 2016 17:06:23 +0000 (09:06 -0800)
commitea24d4f2298bf4838ac6437d7cc653a60fa97d91
treed6bb51ec972b91af9abbf94a7fc16cc614f27be3
parent3d93eee4133490417bf1e1cc4570acf452449f8e
ssh - Remove undocumented roaming support CVE-2016-0777 CVE-2016-0778

* Remove client-side 'roaming' feature as per openbsd patch.

* CVE-2016-0777 CVE-2016-0778.  A malicious server can trick the client
  into potentially leaking key material.
crypto/openssh/readconf.c
crypto/openssh/ssh.c