Description of problem:
There has been a patch made upstream for a DoS issue within openssh-server
Comment of the commit :
Unregister the KEXINIT handler after message has been received. Otherwise an unauthenticated peer can repeat the KEXINIT and cause allocation of up to 128MB -- until the connection is closed. Reported by shilei-c at 360.cn
I cannot find any information inside RedHat's bugzilla about the status of RHEL on this topic.
Version-Release number of selected component (if applicable):
*** This bug has been marked as a duplicate of bug 1384860 ***