K 10
svn:author
V 7
delphij
K 8
svn:date
V 27
2016-11-02T06:43:20.144283Z
K 7
svn:log
V 294
Apply upstream fix for CVE-2016-8858:

  Unregister the KEXINIT handler after message has been received.
  Otherwise an unauthenticated peer can repeat the KEXINIT and cause
  allocation of up to 128MB -- until the connection is closed.
  Reported by shilei-c at 360.cn

Obtained from:	OpenBSD

END