All errata/sisyphus/ALT-PU-2020-2918-1
ALT-PU-2020-2918-1

Package update libssh2 in branch sisyphus

Version1.9.0-alt2
Task#259110
Published2020-10-02
Max severityHIGH
Severity:

Closed issues (2)

BDU:2022-05961
HIGH8.1

Уязвимость компонента packet.c библиотеки реализации протокола SSH2 Libssh2, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании

Published: 2022-09-28Modified: 2024-09-16
CVSS 3.xHIGH 8.1
CVSS:3.x/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
CVSS 2.0HIGH 8.8
CVSS:2.0/AV:N/AC:M/Au:N/C:C/I:N/A:C
References
CVE-2019-17498
HIGH8.1

In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary (out-of-bounds) offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a denial of service condition on the client system when a user connects to the server.

Published: 2019-10-21Modified: 2024-11-21
CVSS 2.0MEDIUM 5.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:N/A:P
CVSS 3.xHIGH 8.1
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
References