Mrkoot

**Name of the Vulnerable Software and Affected Versions** Dropbear versions prior to 2018.76 **Description** The issue is related to a user enumeration problem in the recv msg userauth request function. This function is located in svr-auth.c and is prone to a vulnerability because the validity of usernames affects how certain fields in SSH MSG USERAUTH messages are handled. **Recommendations** For Dropbear versions prior to 2018.76, update to version 2018.76 or later to resolve the issue.