An out of bounds read flaw exists in libssh2 prior to 1.8.1 in the way SFTP packets with empty payloads are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libssh2 libssh2 |
||
debian debian linux 8.0 |
||
netapp ontap select deploy administration utility - |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |