Package libssh2: Information
Source package: libssh2
Version: 1.4.3-alt3.M80P.1
Build time: Apr 24, 2019, 08:14 PM in the task #227571
Category: Networking/Remote access
Report package bugHome page: http://www.libssh2.org/
License: BSD
Summary: A library implementing the SSH2 protocol
Description:
libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS(22), SECSH-USERAUTH(25), SECSH-CONNECTION(23), SECSH-ARCH(20), SECSH-FILEXFER(06)*, SECSH-DHGEX(04), and SECSH-NUMBERS(10).
List of rpms provided by this srpm:
libssh2 (x86_64, i586)
libssh2-debuginfo (x86_64, i586)
libssh2-devel (x86_64, i586)
libssh2-docs (noarch)
libssh2 (x86_64, i586)
libssh2-debuginfo (x86_64, i586)
libssh2-devel (x86_64, i586)
libssh2-docs (noarch)
Maintainer: Slava Dubrovskiy
Last changed
April 19, 2019 Aleksei Nikiforov 1.4.3-alt3.M80P.1
- Fixes: + CVE-2016-0787 Truncated Diffie-Hellman secret length + CVE-2019-3855 Possible integer overflow in transport read allows out-of-bounds write + CVE-2019-3856 Possible integer overflow in keyboard interactive handling allows out-of-bounds write + CVE-2019-3857 Possible integer overflow leading to zero-byte allocation and out-of-bounds write + CVE-2019-3858 Possible zero-byte allocation leading to an out-of-bounds read + CVE-2019-3859 Out-of-bounds reads with specially crafted payloads due to unchecked use of _libssh2_packet_require and _libssh2_packet_requirev + CVE-2019-3860 Out-of-bounds reads with specially crafted SFTP packets + CVE-2019-3861 Out-of-bounds reads with specially crafted SSH packets + CVE-2019-3862 Out-of-bounds memory comparison + CVE-2019-3863 Integer overflow in user authenicate keyboard interactive allows out-of-bounds writes
Nov. 25, 2015 Anton V. Boyarshinov 1.4.3-alt2
- CVE-2015-1782 fixed
Dec. 3, 2012 Slava Dubrovskiy 1.4.3-alt1
- New version