[slackware-security] libssh2 (SSA:2019-077-01)

                							

            -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  libssh2 (SSA:2019-077-01)

New libssh2 packages are available for Slackware 14.2 and -current to
fix security issues.


Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/libssh2-1.8.1-i586-1_slack14.2.txz:  Upgraded.
  Fixed several security issues.
  For more information, see:
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3855">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3855</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3856">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3856</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3857">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3857</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3858">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3858</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3859">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3859</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3860">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3860</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3861">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3861</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3862">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3862</a>
    <a rel="nofollow" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3863">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3863</a>
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(<a rel="nofollow" href="http://osuosl.org">http://osuosl.org</a>) for donating FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on <a rel="nofollow" href="http://slackware.com">http://slackware.com</a> for
additional mirror sites near you.

Updated package for Slackware 14.2:
<a rel="nofollow" href="ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/libssh2-1.8.1-i586-1_slack14.2.txz">ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/libssh2-1.8.1-i586-1_slack14.2.txz</a>

Updated package for Slackware x86_64 14.2:
<a rel="nofollow" href="ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/libssh2-1.8.1-x86_64-1_slack14.2.txz">ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/libssh2-1.8.1-x86_64-1_slack14.2.txz</a>

Updated package for Slackware -current:
<a rel="nofollow" href="ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libssh2-1.8.1-i586-1.txz">ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libssh2-1.8.1-i586-1.txz</a>

Updated package for Slackware x86_64 -current:
<a rel="nofollow" href="ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libssh2-1.8.1-x86_64-1.txz">ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libssh2-1.8.1-x86_64-1.txz</a>


MD5 signatures:
+-------------+

Slackware 14.2 package:
42862bdd55431f6c32f38250275b70fc  libssh2-1.8.1-i586-1_slack14.2.txz

Slackware x86_64 14.2 package:
3932a95faa37ee1575300fff666b1f4b  libssh2-1.8.1-x86_64-1_slack14.2.txz

Slackware -current package:
a8a256fffd0ee22986b4a8ebeb1f6b68  l/libssh2-1.8.1-i586-1.txz

Slackware x86_64 -current package:
14e5f9dd239afd45c3faa27fc02f7c25  l/libssh2-1.8.1-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg libssh2-1.8.1-i586-1_slack14.2.txz


+-----+

Slackware Linux Security Team
<a rel="nofollow" href="http://slackware.com/gpg-key">http://slackware.com/gpg-key</a>
security () slackware com

+------------------------------------------------------------------------+
| To leave the slackware-security mailing list:                          |
+------------------------------------------------------------------------+
| Send an email to majordomo () slackware com with this text in the body of |
| the email message:                                                     |
|                                                                        |
|   unsubscribe slackware-security                                       |
|                                                                        |
| You will get a confirmation message back containing instructions to    |
| complete the process.  Please do not reply to this email address.      |
+------------------------------------------------------------------------+
-----BEGIN PGP SIGNATURE-----

iEYEARECAAYFAlyQId8ACgkQakRjwEAQIjPNlgCfYHhSUrwGDq22fmPJiSZebgoK
oqEAn3rDQlZcBRToHjK7A2nGtWp/aafg
=3Qh6
-----END PGP SIGNATURE-----

<p>