OpenSSH CVE due to race condition - specify it in TLA+?
38 views
Skip to first unread message
Andrew Helwer
unread,
Jul 1, 2024, 2:16:17 PMJul 1
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to tlaplus
If anybody is looking for a fun project, there was recently a fairly severe bug in OpenSSH caused by a race condition. Might be interesting to specify it in TLA+ to see whether it can be reproduced! https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt