CESA-2019:1652 -- centos 6 libssh2ID: oval:org.secpod.oval:def:205229 | Date: (C)2019-07-09 (M)2023-11-13 |
Class: PATCH | Family: unix |
The libssh2 packages provide a library that implements the SSH2 protocol. Security Fix: * libssh2: Integer overflow in transport read resulting in out of bounds write * libssh2: Integer overflow in keyboard interactive handling resulting in out of bounds write * libssh2: Integer overflow in SSH packet processing channel resulting in out of bounds write * libssh2: Integer overflow in user authenticate keyboard interactive allows out-of-bounds writes For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.