CVE-2006-5051
Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
Date published : 2006-09-27
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html