CVE-2019-3861

Synopsis Moderate: libssh2 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for libssh2 is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Sy ...

Debian Bug report logs - #924965 libssh2: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 Package: src:libssh2; Maintainer for src:libssh2 is Mikhail Gusarov <dottedmag@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: ...

Chris Coulson discovered several vulnerabilities in libssh2, a SSH2 client-side library, which could result in denial of service, information leaks or the execution of arbitrary code For the stable distribution (stretch), these problems have been fixed in version 170-1+deb9u1 We recommend that you upgrade your libssh2 packages For the detailed ...

An out of bounds read flaw was discovered in libssh2 when a specially crafted SFTP packet is received from the server A remote attacker who compromises a SSH server may be able to cause a denial of service or read data in the client memory (CVE-2019-3858) An out of bounds read flaw was discovered in libssh2 in the way SSH packets with a padding l ...

An issue has been found in libssh2 before 181 where a server could send a specially crafted SSH packet with a padding length value greater than the packet length This would result in a buffer read out of bounds when decompressing the packet or result in a corrupted packet value ...