'packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be NULL.'

• Copyright MITRE Corporation

ClearCenter does not consider this a security issue.

This bug affects the OpenSSH client and not the server. This can cause the client to crash when connecting to a malicious server. This is not a denial of service condition.

No action required.

• MITRE.org CVE database

search?q=clearos%2C%20clearos%20content%2C%20CVE%2C%20CVE%202006%2C%20xcategory%2C%20maintainer_dloper%2C%20maintainerreview_x%2C%20keywordfix&btnI=lucky