A flaw was found in libssh2 prior to 1.8.1. A server could send a multiple keyboard interactive response messages whose total length are greater than unsigned char max characters. This value is used as an index to copy memory causing in an out of bounds memory write error.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libssh2 libssh2 |
||
debian debian linux 8.0 |
||
netapp ontap select deploy administration utility - |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server eus 7.6 |
||
redhat enterprise linux server aus 7.6 |