From 2f29a8caba867a2b0c32772de705657de726dcca Mon Sep 17 00:00:00 2001
From: Darren Tucker <dtucker@zip.com.au>
Date: Sat, 24 Oct 2009 11:47:58 +1100
Subject:    - djm@cvs.openbsd.org 2009/10/23 01:57:11      [sshconnect2.c]    
  disallow a hostile server from checking jpake auth by sending an     
 out-of-sequence success message. (doesn't affect code enabled by default)

---
 ChangeLog | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'ChangeLog')

diff --git a/ChangeLog b/ChangeLog
index 5ec1345c3..53dcc62fd 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -20,6 +20,10 @@
      [authfile.c]
      switch from 3DES to AES-128 for encryption of passphrase-protected
      SSH protocol 2 private keys; ok several
+   - djm@cvs.openbsd.org 2009/10/23 01:57:11
+     [sshconnect2.c]
+     disallow a hostile server from checking jpake auth by sending an
+     out-of-sequence success message. (doesn't affect code enabled by default)
 
 20091011
  - (dtucker) [configure.ac sftp-client.c] Remove the gyrations required for
-- 
cgit v1.2.3