27 matches found
Security update for libssh
This update for libssh fixes the following issues: CVE-2025-8277: memory exhaustion leading to client-side DoS due to improper memory management when KEX process is repeated with incorrect guesses bsc1249375. CVE-2025-8114: NULL pointer dereference when an allocation error happens during the...
OESA-2025-2131 libssh security update
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...
Security update for libssh
This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...
CVE-2025-5449
A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due to an incorrect packet length check that allows an integer overflow when handling large payload sizes on 32-bit systems. This issue leads to failed memory allocation and causes the server process to crash,...
[slackware-security] libssh
New libssh packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libssh-0.11.2-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Write beyond bounds in binary to base64 conversion. Us...
RLSA-2024:2504 Low: libssh security update
libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...
libssh security update
0.9.6-14 - Fix CVE-2023-48795 Prefix truncation attack on Binary Packet Protocol BPP - Fix CVE-2023-6918 Missing checks for return values for digests - Fix CVE-2023-6004 ProxyCommand/ProxyJump features allow injection of malicious code through hostname - Note: version is bumped from 12 to 14...
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to libssh security bypass vulnerabilitiy [ CVE-2023-2283]
Summary Potential libssh security bypass vulnerabilitiy have been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. CVE-2023-2283 Vulnerability Details CVEID:CVE-2023-2283 DESCRIPTION:...
SUSE-SU-2024:0140-1 Security update for libssh
This update for libssh fixes the following issues: Security fixes: - CVE-2023-6004: Fixed command injection using proxycommand bsc1218209 - CVE-2023-48795: Fixed potential downgrade attack using strict kex bsc1218126 - CVE-2023-6918: Fixed missing checks for return values of MD functions bsc12181...
DLA-2303-1 libssh - security update
Bulletin has no description...
OPENSUSE-SU-2020:0510-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2020-1730: Fixed a possible denial of service when using AES-CTR bsc1168699. This update was imported from the SUSE:SLE-15-SP1:Update update project...
SUSE-SU-2020:0968-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2020-1730: Fixed a possible denial of service when using AES-CTR bsc1168699...
SUSE-SU-2020:0967-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2020-1730: Fixed a possible denial of service when using AES-CTR bsc1168699...
OPENSUSE-SU-2020:0102-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2019-14889: Fixed an unwanted command execution in scp caused by unsanitized location bsc1158095. This update was imported from the SUSE:SLE-15-SP1:Update update project...
SUSE-SU-2020:0130-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2019-14889: Fixed an unwanted command execution in scp caused by unsanitized location bsc1158095...
SUSE-SU-2019:3308-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2019-14889: Fixed an arbitrary command execution bsc1158095...
SUSE-SU-2019:3293-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2019-14889: Fixed an arbitrary command execution bsc1158095...
SUSE-SU-2019:3267-1 Security update for libssh
This update for libssh fixes the following issues: - CVE-2019-14889: Fixed an arbitrary command execution bsc1158095...
SUSE-SU-2018:3253-1 Security update for libssh
This update for libssh fixes the following issues: Security issue fixed: - CVE-2018-10933: Fixed a server mode authentication bypass bsc1108020. Non security issue fixed: - Fix popd syntax to be compatible with newer versions of the bash shell...
DSA-4322-1 libssh - security update
Bulletin has no description...