Comment 5 for bug 286337

I second Pablo's recommendation. I've recently undergone a PCI audit, and was flagged for not using OpenSSH 5.0p1 due to a known vulnerability in 4.7p1 (CVE-2008-1483)

If we can please backport this, I would be very appreciative!

Thank you,