OpenSSH 7.3 Released, Adds ProxyJump & IdentityAgent Options
OpenSSH 7.3 addresses a potential denial of service attack against the system's crypt function, fixes various other security weaknesses, improves operation ordering of MAC verification for the Encrypt-then-MAC mode, and other bug fixes.
A new option to OpenSSH 7.3 is the ProxyJump option along with the -J command line flag for alowing simplified indirection through one or more SSH bastions / jump hosts. There's also an IdentityAgent option, support for SHA256 and SHA512 RSA signatures in certificates, allowing UTF-8 characters in pre-authentication banners sent from servers, and other changes.
More details on OpenSSH 7.3 via the release announcement.