The kex_agree_methods function in libssh2 prior to 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 7.0 |
||
libssh2 libssh2 |
||
fedoraproject fedora 22 |
||
fedoraproject fedora 20 |
||
fedoraproject fedora 21 |