From a3365280bfee1b3e889e39883d6e8f1101155ea6 Mon Sep 17 00:00:00 2001
From: delphij <delphij@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
Date: Wed, 2 Nov 2016 06:58:47 +0000
Subject: [PATCH] MFC r308197: MFV r308196:

Fix OpenSSH remote Denial of Service vulnerability.

Security:	CVE-2016-8858


git-svn-id: svn://svn.freebsd.org/base/stable/10@308199 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f
---
 crypto/openssh/kex.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/crypto/openssh/kex.c b/crypto/openssh/kex.c
index d371f47c4..9c9f56228 100644
--- a/crypto/openssh/kex.c
+++ b/crypto/openssh/kex.c
@@ -468,6 +468,7 @@ kex_input_kexinit(int type, u_int32_t seq, void *ctxt)
 	if (kex == NULL)
 		return SSH_ERR_INVALID_ARGUMENT;
 
+	ssh_dispatch_set(ssh, SSH2_MSG_KEXINIT, NULL);
 	ptr = sshpkt_ptr(ssh, &dlen);
 	if ((r = sshbuf_put(kex->peer, ptr, dlen)) != 0)
 		return r;
-- 
2.45.0