Уязвимость CVE-2019-13115: Информация

Описание

In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c has an integer overflow that could lead to an out-of-bounds read in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to disclose sensitive information or cause a denial of service condition on the client system when a user connects to the server. This is related to an _libssh2_check_length mistake, and is different from the various issues fixed in 1.8.1, such as CVE-2019-3855.

Важность: HIGH (8,1) Вектор: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2019-13115
Опубликовано: 16 июля 2019 г.
Изменено: 7 ноября 2023 г.
Идентификатор типа ошибки: CWE-125CWE-190

Исправленные пакеты

Имя пакета
Ветка
Исправлено в версии
Версия в репозитории
Errata ID
№ Задания
Состояние
libssh2sisyphus1.9.0-alt11.11.0-alt2ALT-PU-2019-2297-1234691Исправлено
libssh2p101.9.0-alt11.11.0-alt2ALT-PU-2019-2297-1234691Исправлено
libssh2p91.9.0-alt11.9.0-alt2ALT-PU-2019-2369-1235540Исправлено
libssh2c10f11.9.0-alt11.11.0-alt2ALT-PU-2019-2297-1234691Исправлено
libssh2c9f21.9.0-alt11.11.0-alt2ALT-PU-2019-2369-1235540Исправлено
libssh2p111.9.0-alt11.11.0-alt2ALT-PU-2019-2297-1234691Исправлено

Ссылки на рекомендации, решения и инструменты

Ссылка
Ресурс
https://github.com/libssh2/libssh2/pull/350
  • Issue Tracking
  • Third Party Advisory
https://blog.semmle.com/libssh2-integer-overflow/
  • Exploit
  • Third Party Advisory
https://github.com/libssh2/libssh2/compare/02ecf17...42d37aa
  • Third Party Advisory
https://libssh2.org/changes.html
  • Release Notes
  • Vendor Advisory
[debian-lts-announce] 20190725 [SECURITY] [DLA 1730-3] libssh2 regression update
  • Mailing List
  • Third Party Advisory
https://security.netapp.com/advisory/ntap-20190806-0002/
  • Third Party Advisory
https://support.f5.com/csp/article/K13322484
  • Third Party Advisory
[debian-lts-announce] 20211217 [SECURITY] [DLA 2848-1] libssh2 security update
  • Mailing List
  • Third Party Advisory
http://packetstormsecurity.com/files/172834/libssh2-1.8.2-Out-Of-Bounds-Read.html
    [debian-lts-announce] 20230908 [SECURITY] [DLA 3559-1] libssh2 security update
      FEDORA-2019-9d85600fc7
        FEDORA-2019-5885663621
          https://support.f5.com/csp/article/K13322484?utm_source=f5support&amp%3Butm_medium=RSS
            [bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8
              [bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

                  1. Конфигурация 1

                    cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*
                    End excliding
                    1.9.0

                    Конфигурация 2

                    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
                    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

                    Конфигурация 3

                    cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
                    cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*

                    Конфигурация 4

                    cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
                    cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
                    cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
                    Start including
                    11.0.0
                    End including
                    11.70.1

                    Конфигурация 5

                    cpe:2.3:a:f5:traffix_systems_signaling_delivery_controller:*:*:*:*:*:*:*:*
                    Start including
                    5.0.0
                    End including
                    5.1.0
                VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                Версия: v24.5.3
                Наверх