SUSE-SU-2023:3738-1 Security update for libssh2_org

This update for libssh2org fixes the following issues: - CVE-2020-22218: Fixed a bug in libssh2packetadd which allows to access out of bounds memory. bsc1214527...

Important: libssh2

Issue Overview: An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory. CVE-2020-22218 Affected Packages: libssh2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...

Amazon Linux 2 : libssh2 (ALAS-2023-2257)

The version of libssh2 installed on the remote host is prior to 1.4.3-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2257 advisory. An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

Important Photon OS Security Update - PHSA-2023-3.0-0652

Updates of 'libssh2' packages of Photon OS have been released...

Ubuntu: Security Advisory (USN-6371-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6371-1: libssh2 vulnerability

It was discovered that libssh2 incorrectly handled memory access. An attacker could possibly use this issue to cause a crash...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : libssh2 vulnerability (USN-6371-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6371-1 advisory. It was discovered that libssh2 incorrectly handled memory access. An attacker could possibly use this issue to cause a crash. Tenable has...

Important Photon OS Security Update - PHSA-2023-5.0-0094

Updates of 'libssh2' packages of Photon OS have been released...

Advisory ROSA-SA-2023-2235

Software: libgit2 1.4.5 OS: ROSA-CHROME packageevrstring: libgit2-1.4.5-1.src.rpm CVE-ID: CVE-2023-22742 BDU-ID: 2023-00574 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libssh2 library of the C Libgit2 implementation of Git methods is related to cryptographic signature verification errors...

Debian: Security Advisory (DLA-3559-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3559-1] libssh2 security update

Debian LTS Advisory DLA-3559-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 08, 2023 https://wiki.debian.org/LTS Package : libssh2 Version : 1.8.0-2.1+deb10u1 CVE ID : CVE-2019-13115 CVE-2019-17498 CVE-2020-22218 Debian Bug : 932329 943562...

Debian dla-3559 : libssh2-1 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3559 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3559-1 [email protected]...

DLA-3559-1 libssh2 - security update

Bulletin has no description...

Oracle Linux 7 : libssh2 (ELSA-2019-2136)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2136 advisory. - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes CVE-2019-3863 - fix out-of-bounds memory comparison with...

Oracle Linux 7 : libssh2 (ELSA-2020-3915)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3915 advisory. - fix integer overflow in SSHMSGDISCONNECT logic CVE-2019-17498 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes...

Important Photon OS Security Update - PHSA-2023-4.0-0465

Updates of 'linux-aws', 'linux-rt', 'linux-secure', 'libssh2' packages of Photon OS have been released...

An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.

...

CVE-2020-22218

A flaw was found in the libssh2 library. An out-of-bounds access issue can occur due to an improper initialization of a variable, resulting in a crash in the application linked to the library...

Denial Of Service (DoS)

libssh2.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the libssh2transportread function at transport.c due to an out of bound read which allows an attacker to cause an application crash...

SUSE CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...