Checkout
danielsh
committed
on 10 Aug 17
Merge r1804691 and r1804692 from trunk:

r1804691:

* CVE-2017-9800
Justification:
Malicious server can execute arbitrary command o… Show more
Merge r1804691 and r1804692 from trunk:

r1804691:

* CVE-2017-9800

  Justification:

    Malicious server can execute arbitrary command on client.

  Notes:

    patch: CVE-2017-9800/CVE-2017-9800-1.9.patch

  Votes:

    +1: philip, danielsh, stsp

    +1: astieger (without r78105)

r1804692 corrects another bit of documentation, that is not present in tarball

releases.  As a documentation fix it requires no voting. Show less