Shilei-C

**Name of the Vulnerable Software and Affected Versions** OpenSSH versions 6.x through 7.3 **Description** The issue allows remote attackers to cause a denial of service by sending many duplicate KEXINIT requests, leading to memory consumption. This is related to the kex input kexinit function in kex.c. Note that OpenSSH upstream does not consider this as a security issue. **Recommendations** For OpenSSH versions 6.x through 7.3, consider disabling the kex input kexinit function as a temporary workaround until a patch is available. Restrict access to the kex.c module to minimize the risk of exploitation. Avoid using the KEXINIT request in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.