CLSA-2023-1695835334 Fix CVE(s): CVE-2020-22218

SECURITY UPDATE: An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory. - debian/patches/CVE-2020-22218.patch: doing totalnum zero length check. - CVE-2020-22218...

Amazon Linux AMI : libssh2 (ALAS-2023-1834)

The version of libssh2 installed on the remote host is prior to 1.4.2-3.14. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1834 advisory. An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

Important: libssh2

Issue Overview: An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory. CVE-2020-22218 Affected Packages: libssh2 Issue Correction: Run yum update libssh2 or yum update --advisory ALAS-2023-1834 to update your system. New Packages:...

SUSE-SU-2023:3738-1 Security update for libssh2_org

This update for libssh2org fixes the following issues: - CVE-2020-22218: Fixed a bug in libssh2packetadd which allows to access out of bounds memory. bsc1214527...

Important: libssh2

Issue Overview: An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory. CVE-2020-22218 Affected Packages: libssh2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...

Amazon Linux 2 : libssh2 (ALAS-2023-2257)

The version of libssh2 installed on the remote host is prior to 1.4.3-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2257 advisory. An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

Important Photon OS Security Update - PHSA-2023-3.0-0652

Updates of 'libssh2' packages of Photon OS have been released...

Ubuntu: Security Advisory (USN-6371-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6371-1: libssh2 vulnerability

It was discovered that libssh2 incorrectly handled memory access. An attacker could possibly use this issue to cause a crash...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : libssh2 vulnerability (USN-6371-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6371-1 advisory. It was discovered that libssh2 incorrectly handled memory access. An attacker could possibly use this issue to cause a crash. Tenable has...

Important Photon OS Security Update - PHSA-2023-5.0-0094

Updates of 'libssh2' packages of Photon OS have been released...

Advisory ROSA-SA-2023-2235

Software: libgit2 1.4.5 OS: ROSA-CHROME packageevrstring: libgit2-1.4.5-1.src.rpm CVE-ID: CVE-2023-22742 BDU-ID: 2023-00574 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libssh2 library of the C Libgit2 implementation of Git methods is related to cryptographic signature verification errors...

Debian: Security Advisory (DLA-3559-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3559-1] libssh2 security update

Debian LTS Advisory DLA-3559-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 08, 2023 https://wiki.debian.org/LTS Package : libssh2 Version : 1.8.0-2.1+deb10u1 CVE ID : CVE-2019-13115 CVE-2019-17498 CVE-2020-22218 Debian Bug : 932329 943562...

Debian dla-3559 : libssh2-1 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3559 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3559-1 [email protected]...

DLA-3559-1 libssh2 - security update

Bulletin has no description...

Oracle Linux 7 : libssh2 (ELSA-2019-2136)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2136 advisory. - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes CVE-2019-3863 - fix out-of-bounds memory comparison with...

Oracle Linux 7 : libssh2 (ELSA-2020-3915)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3915 advisory. - fix integer overflow in SSHMSGDISCONNECT logic CVE-2019-17498 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes...

Important Photon OS Security Update - PHSA-2023-4.0-0465

Updates of 'libssh2', 'linux-secure', 'linux-aws', 'linux-rt' packages of Photon OS have been released...

An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.

...