Skip to content

Commit

Permalink
Finally got a CVE re #1283
Browse files Browse the repository at this point in the history
  • Loading branch information
@bitprophet
bitprophet committed Oct 8, 2018
1 parent a48c8fe commit 608ace3
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion sites/www/changelog.rst
View file
Expand Up @@ -8,7 +8,7 @@ Changelog
behavior probably didn't cause any outright errors, but it doesn't seem to
conform to the RFCs and could cause (non-infinite) feedback loops in some
scenarios (usually those involving Paramiko on both ends).
- :bug:`1283` Fix exploit (CVE pending) in Paramiko's server mode (**not**
- :bug:`1283` Fix exploit (CVE-2018-1000805) in Paramiko's server mode (**not**
client mode) where hostile clients could trick the server into thinking they
were authenticated without actually submitting valid authentication.

Expand Down

0 comments on commit 608ace3

Please sign in to comment.