This update fixes a NULL pointer dereference in SCP options processing. An authenticated remote attacker could issue invalid SCP commands, possibly resulting in a Denial of Service condition.
Note: the sftp/scp server is not enabled by the default configuration.
Please login to add feedback.
This update has been submitted for testing by pghmcfc.
This update's test gating status has been changed to 'ignored'.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
This update can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by bodhi.
This update has been pushed to stable.