A code reuse issue enabled comma characters in certificate principals to be interpreted as list separators.

The post OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years appeared first on SecurityWeek.