Bug 496 - [ANKK:HSOL-3956] AG / OpenSSH Vulnerability CVE-2023-51385
Review Request #224 — Created April 18, 2024 and updated
| Information | |
|---|---|
| milliechou | |
| AG | |
| rel_ag_9_4_5 | |
| 496 | |
| Reviewers | |
| jasonchou, timlai | |
Enhance hostname and user validation.
Add valid_hostname(const char s) and valid_ruser(const char s) in ssh.c
This makes ssh refuse user or host names provided on the commandline that contain most shell metacharacters.
