CVE-2026-7598

CVE-2026-7598 affects libssh2 up to 1.11.1. The vulnerable component is the function userauth_password in src/userauth.c, where manipulation of username_len/password_len can trigger an integer overflow. The issue could allow a remote attacker to exploit the overflow, impacting confidentiality/ in...

CVE-2026-7598

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name of the patch is...

CVE-2026-7598

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name of the patch is...

libssh2 数字错误漏洞

libssh2 is The libssh2 project open source a client C library that implements the SSH2 protocol , it can execute remote commands , file transfers , as well as for remote programs to provide a secure transmission channel . libssh2 1.11.1 and earlier versions of the number error vulnerability , the...

PT-2026-36550

Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.2 Description An integer overflow exists in the userauth password function within the src/userauth.c file. This issue occurs due to the incorrect handling of the username len and password len arguments during SSH...

GHSA-5JF9-8F86-JHVW vulnerabilities

Vulnerabilities for packages: libssh, libssh2...

CVE-2025-14821 vulnerabilities

Vulnerabilities for packages: libssh, libssh2...

CVE-2025-14821 vulnerabilities

Vulnerabilities for packages: libssh2, libssh...

GHSA-5JF9-8F86-JHVW vulnerabilities

Vulnerabilities for packages: libssh2, libssh...

CLSA-2026-1777036898 libssh2: Fix of 2 CVEs

CVE-2019-3858: fix zero-byte allocation in sftppacketread - CVE-2019-3859: fix out-of-bounds reads in libssh2packetrequire...

libssh2: Fix of 2 CVEs

CVE-2019-3858: fix zero-byte allocation in sftppacketread - CVE-2019-3859: fix out-of-bounds reads in libssh2packetrequire...

Security Bulletin: Multiple vulnerabilities in IBM Planning Analytics

Summary Multiple vulnerabilities were addressed in IBM Planning Analytics Local. Vulnerability Details CVEID:CVE-2025-53057 DESCRIPTION: An unspecified vulnerability in Java SE related to the Security component could allow a remote attacker to cause no confidentiality impact, high integrity impac...

MiracleLinux 7 : libssh2-1.8.0-4.el7.1 (AXSA:2023-6489:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6489:01 advisory. libssh2: use-of-uninitialized-value in libssh2transportread CVE-2020-22218 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 7 : libssh2-1.8.0-4.el7 (AXSA:2020-562:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-562:01 advisory. libssh2: integer overflow in SSHMSGDISCONNECT logic in packet.c CVE-2019-17498 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : libssh2-1.4.2-2.AXS4.1 (AXSA:2016-135:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2016-135:01 advisory. libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20,...

MiracleLinux 7 : libssh2-1.4.3-10.el7 (AXSA:2015-623:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-623:01 advisory. libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20,...

MiracleLinux 7 : libssh2-1.4.3-10.el7.1 (AXSA:2016-132:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2016-132:01 advisory. libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20,...

MiracleLinux 7 : libssh2-1.4.3-12.el7.2 (AXSA:2019-3791:02)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2019-3791:02 advisory. Security Fix - libssh2 SSH CVE-2019-3855 - libssh2 SSH CVE-2019-3856 - libssh2SSHMSGCHANNELREQUESTEXIT SSH CVE-2019-3857 - libssh2 char CVE-2019-386...

MiracleLinux 4 : libssh2-1.4.2-3.AXS4.1 (AXSA:2019-3922:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2019-3922:01 advisory. libssh2: Integer overflow in transport read resulting in out of bounds write CVE-2019-3855 libssh2: Integer overflow in keyboard interactive handlin...

MiracleLinux 7 : libssh2-1.4.3-12.el7.3 (AXSA:2019-3945:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-3945:03 advisory. libssh2: Out-of-bounds memory comparison with specially crafted message channel request CVE-2019-3862 Tenable has extracted the preceding description block...