Lucene search
RedhatCVELIST:CVE-2015-3146HistoryApr 13, 2016 - 5:00 p.m.
CVE-2015-3146
2016-04-1317:00:00
redhat
www.cve.org
3
The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in package_cb.c in libssh before 0.6.5 do not properly validate state, which allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted SSH packet.
References
lists.fedoraproject.org/pipermail/package-announce/2015-July/161802.html
lists.fedoraproject.org/pipermail/package-announce/2015-May/158013.html
www.debian.org/security/2016/dsa-3488
www.ubuntu.com/usn/USN-2912-1
git.libssh.org/projects/libssh.git/commit/?h=libssh-0.6.5&id=94f6955fbaee6fda9385a23e505497efe21f5b4f
www.libssh.org/2015/04/30/libssh-0-6-5-security-and-bugfix-release/
www.libssh.org/security/advisories/CVE-2015-3146.txt
Related
freebsd
freebsd
libssh -- null pointer dereference
2015-04-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package libssh version 0.6.5-alt1
2015-06-17 00:00:00
Security fix for the ALT Linux 7 package libssh version 0.6.5-alt1
2015-06-17 00:00:00
Security fix for the ALT Linux 9 package libssh version 0.6.5-alt1
2015-06-17 00:00:00
nvd
nvd
CVE-2015-3146
2016-04-13 17:59:03
mageia
mageia
Updated libssh packages fix CVE-2015-3146
2015-05-11 23:10:38
nessus
nessus
FreeBSD : libssh -- NULL pointer dereference (0b040e24-f751-11e4-b24d-5453ed2e2b49)
2015-05-11 00:00:00
Fedora 21 : libssh-0.6.5-1.fc21 (2015-7590)
2015-05-15 00:00:00
SUSE SLED12 Security Update : libssh (SUSE-SU-2015:1707-2)
2015-10-12 00:00:00
cve
cve
CVE-2015-3146
2016-04-13 17:59:03
ubuntucve
ubuntucve
CVE-2015-3146
2015-05-05 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0209)
2022-01-28 00:00:00
Fedora Update for libssh FEDORA-2015-10962
2015-07-15 00:00:00
Fedora Update for libssh FEDORA-2015-7590
2015-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: libssh-0.7.1-1.fc22
2015-07-14 15:28:56
[SECURITY] Fedora 21 Update: libssh-0.6.5-1.fc21
2015-05-14 11:15:51
prion
prion
Null pointer dereference
2016-04-13 17:59:00
debiancve
debiancve
CVE-2015-3146
2016-04-13 17:59:03
ubuntu
ubuntu
libssh vulnerabilities
2016-02-23 00:00:00
debian
debian
[SECURITY] [DSA 3488-1] libssh security update
2016-02-23 16:37:38
[SECURITY] [DSA 3488-1] libssh security update
2016-02-23 16:37:38
osv
osv
libssh - security update
2016-02-23 00:00:00