openssh unix dev - Dec 2012 - CVE-2006-4925 - Affected OpenSSH Versions

Comparison of
http://mirror.team-cymru.org/pub/OpenBSD/OpenSSH/openssh-4.4.tar.gz to
http://mirror.team-cymru.org/pub/OpenBSD/OpenSSH/openssh-4.5.tar.gz source
codes, in conjunction with the changes shown at
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/packet.c.diff?r1=1.144&r2=1.145&f=h,
appear to shows that CVE-2006-4925 was fixed with the release of OpenSSH 4.5.

However, can a list of OpenSSH versions which are/were affected by this CVE be
supplied?

I ask as there seems to be little in the way of documentation at
http://www.openssh.com regarding CVE-2006-4925.

________________________________

This transmission may contain information that is privileged, confidential,
and/or exempt from disclosure under applicable law. If you are not the intended
recipient, you are hereby notified that any disclosure, copying, distribution,
or use of the information contained herein (including any reliance thereon) is
STRICTLY PROHIBITED. If you received this transmission in error, please
immediately contact the sender and destroy the material in its entirety, whether
in electronic or hard copy format.

On Fri, 14 Dec 2012, David Aaron wrote:
> Comparison of
> http://mirror.team-cymru.org/pub/OpenBSD/OpenSSH/openssh-4.4.tar.gz to
> http://mirror.team-cymru.org/pub/OpenBSD/OpenSSH/openssh-4.5.tar.gz
> source codes, in conjunction with the changes shown at
> http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/packet.c.diff?r1
> =1.144&r2=1.145&f=h, appear to shows that CVE-2006-4925 was fixed
with
> the release of OpenSSH 4.5.
>
> However, can a list of OpenSSH versions which are/were affected by
> this CVE be supplied?
>
> I ask as there seems to be little in the way of documentation at
> http://www.openssh.com regarding CVE-2006-4925.
That's because it isn't a security problem. An "attacker" can
cause their
own connection to abort and no others.

-d