12 matches found
Slackware: Security Advisory (SSA:2015-111-04)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2014-0119)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201408-03
Gentoo Linux Local Security Checks GLSA 201408-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
[slackware-security] libssh
New libssh packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/libssh-0.6.4-i486-1slack14.1.txz: Upgraded. This update fixes some security issues. For more information, see:...
Security fix for the ALT Linux 8 package libssh version 0.6.3-alt1
March 25, 2014 Sergey V Turchin 0.6.3-alt1 - new version - security fixes: CVE-2014-0017, CVE-2014-0017...
Security fix for the ALT Linux 7 package libssh version 0.6.3-alt1
March 25, 2014 Sergey V Turchin 0.6.3-alt1 - new version - security fixes: CVE-2014-0017, CVE-2014-0017...
Security fix for the ALT Linux 9 package libssh version 0.6.3-alt1
March 25, 2014 Sergey V Turchin 0.6.3-alt1 - new version - security fixes: CVE-2014-0017, CVE-2014-0017...
SuSE 11.3 Security Update : libssh2 (SAT Patch Number 8982)
This update of libssh fixes the following security issue : - When libssh operates in server mode, the randomness pool was not switched on fork, so two pools could operate on the same randomness and could generate the same keys. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
Fedora 19 : libssh-0.6.3-1.fc19 (2014-3485)
Fix CVE-2014-0017. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...
Ubuntu: Security Advisory (USN-2145-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-0017
The RANDbytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator PRNG, which causes the state to be shared between children processes and allows local users to obtain sensitive information by leveraging a pid...
CVE-2014-0017
CVE-2014-0017 affects libssh prior to 0.6.3 where RAND_bytes state is not re-seeded after fork, causing PRNG state to be shared between child processes. This can lead to leakage of private keys for servers using ECC (ECDSA) or DSA certificates under certain conditions. The issue is resolved by up...