Ubuntu: Security Advisory (USN-1640-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 18 : libssh-0.5.3-1.fc18 (2012-18610)

This is an important SECURITY and maintenance release in order to address CVE-2012-4559, CVE-2012-4560, CVE-2012-4561 and CVE-2012-4562. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : libssh vulnerabilities (USN-1640-1)

Xi Wang and Florian Weimer discovered that libssh incorrectly handled memory. A remote attacker could use this to cause libssh to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2012-4559, CVE-2012-4560, CVE-2012-4561, CVE-2012-4562. Note that Tenable Network...

USN-1640-1: libssh vulnerabilities

Xi Wang and Florian Weimer discovered that libssh incorrectly handled memory. A remote attacker could use this to cause libssh to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2012-4559, CVE-2012-4560, CVE-2012-4561, CVE-2012-4562...

Security fix for the ALT Linux 8 package libssh version 0.5.3-alt1

Nov. 21, 2012 Sergey V Turchin 0.5.3-alt1 - new version - security fixes: CVE-2012-4559, CVE-2012-4560, CVE-2012-4561...

Security fix for the ALT Linux 9 package libssh version 0.5.3-alt1

Nov. 21, 2012 Sergey V Turchin 0.5.3-alt1 - new version - security fixes: CVE-2012-4559, CVE-2012-4560, CVE-2012-4561...

Security fix for the ALT Linux 7 package libssh version 0.5.3-alt1

Nov. 21, 2012 Sergey V Turchin 0.5.3-alt1 - new version - security fixes: CVE-2012-4559, CVE-2012-4560, CVE-2012-4561...

CVE-2012-4560

Multiple buffer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via unspecified vectors...

CVE-2012-4561

The 1 publickeymakedss, 2 publickeymakersa, 3 signaturefromstring, 4 sshdosign, and 5 sshsignsessionid functions in keys.c in libssh before 0.5.3 free "an invalid pointer on an error path," which might allow remote attackers to cause a denial of service crash via unspecified vectors...

openSUSE Security Update : libssh (libssh-1329)

Various overflow conditions have been fixed in libssh. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libssh-1329. The text description of this plugin is C SUSE LLC...

SuSE 11 Security Update : libssh (SAT Patch Number 1326)

Various overflow conditions have been fixed in libssh. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. include'deprecatednasllevel.inc';...