| Is there a complete list of vulnerable versions of OpenSSH including | the 2.x branches? In other words how far back does this issue go? Just compare buffer_append_space() function in buffer.c in all versions you are interested in... -- Greets adeon