CVE-2014-8475

Name of the Vulnerable Software and Affected Versions FreeBSD versions 9.1 through 10.0

Description The issue is related to incorrect library ordering when compiling OpenSSH with Kerberos support, leading to symbols being resolved incorrectly. This allows remote attackers to cause a denial of service by ending multiple connections before authentication is completed, resulting in sshd deadlock and prevention of new connections.

Recommendations For FreeBSD versions 9.1 through 10.0, recompile OpenSSH without Kerberos support to mitigate the issue. Alternatively, consider reordering the library linking to ensure correct symbol resolution.