CVE-2020-22218

A flaw was found in the libssh2 library. An out-of-bounds access issue can occur due to an improper initialization of a variable, resulting in a crash in the application linked to the library...

Denial Of Service (DoS)

libssh2.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the libssh2transportread function at transport.c due to an out of bound read which allows an attacker to cause an application crash...

SUSE CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

AZL-28594 CVE-2020-22218 affecting package libssh2 for versions less than 1.9.0-3

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

DEBIAN-CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

UBUNTU-CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

Design/Logic Flaw

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

CVE-2020-22218

The CVE-2020-22218 issue affects libssh2 up to version 1.10.0, related to the function _libssh2_packet_add, which could allow attackers to access out-of-bounds memory. Multiple vendors issued advisories and patches: Debian LTS DLA-3559-1 notes a fix in libssh2 1.8.0-2.1+deb10u1; Cloud/Linux distr...

CVE-2020-22218

An issue was discovered in function libssh2packetadd in libssh2 1.10.0 allows attackers to access out of bounds memory...

Medium: libssh2

Issue Overview: An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the libssh2packetrequire and libssh2packetrequirev functions. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. CVE-2019-3859 An out of...

Amazon Linux AMI : libssh2 (ALAS-2023-1756)

The version of libssh2 installed on the remote host is prior to 1.4.2-3.13. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1756 advisory. An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the libssh2packetrequire and libssh2packetrequirev...

Amazon Linux 2 : libssh2 (ALAS-2023-2046)

The version of libssh2 installed on the remote host is prior to 1.4.3-12. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2046 advisory. An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the libssh2packetrequire and libssh2packetrequirev...

Medium: libssh2

Issue Overview: An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the libssh2packetrequire and libssh2packetrequirev functions. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. CVE-2019-3859 An out of...

OSV-2023-343 Heap-buffer-overflow in _libssh2_ntohu32

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58291 Crash type: Heap-buffer-overflow READ 1 Crash state: libssh2ntohu32 packetauthagentopen libssh2packetadd...

Security Bulletin: Vulnerability in libssh2 affects SAN Volume Controller and Storwize Family (CVE-2015-1782)

Summary A vulnerability in libssh2 affects SAN Volume Controller and Storwize Family. Vulnerability Details CVEID: CVE-2015-1782 DESCRIPTION: libssh2 is vulnerable to a denial of service, caused by an error in kexagreemethods function. By sending a specially-craftedlity to cause the system to sto...