Cray Inc. Information for VU#978316
Vulnerability in OpenSSH daemon (sshd)
Cray Inc. supports openssh through its Cray Open Software (COS) package. Cray does ship with VerifyReverseMapping set to "no". A site should set this to "yes" in the sshd_config file and then restart sshd. Once patches are available they will be incorporated.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.