CVE-2023-1667:packet: Do not allow servers to initiate handshake

Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2026-02-04 12:20:42 +09:00 · 2023-03-14 11:35:43 +01:00
parent 85ddd8b34e
commit 6887a5bb20
1 changed files with 5 additions and 0 deletions
--- a/src/packet.c
+++ b/src/packet.c
@@ -366,6 +366,11 @@ static enum ssh_packet_filter_result_e ssh_packet_incoming_filter(ssh_session se
         * - session->dh_handhsake_state = DH_STATE_NEWKEYS_SENT
         * */

+        if (!session->server) {
+            rc = SSH_PACKET_DENIED;
+            break;
+        }
+
        if (session->session_state != SSH_SESSION_STATE_DH) {
            rc = SSH_PACKET_DENIED;
            break;