Displaying 1 result from an estimated 1 matches for "a4dce1b0".
Did you mean:
a45ce6b0
2015 Oct 15
2
Segfault on invalid SSH keys.
Hi,
I reported a bug against the Debian distribution,
but it might be more useful to report it here.
Via fuzzing I discovered a key which will cause
the ssh-keygen process to segfault when fingerprinting
via:
ssh-keygen -l -f bogus.key
This segfault is a NULL pointer dereference, and is
a denial of service attack if you run a service which
allows SSH keys to be uploaded and