Download
| Alert*
oval:org.secpod.oval:def:67062
libssh: None libssh could be made to crash if it received a specially crafted request. oval:org.secpod.oval:def:506472 libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fix: * libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL For more details about the security issue, including the impact, a CVSS score, acknowled ... oval:org.secpod.oval:def:118710 The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote prog ... oval:org.secpod.oval:def:4501391 libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fix: * libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL For more details about the security issue, including the impact, a CVSS score, acknowled ... oval:org.secpod.oval:def:705567 libssh: None libssh could be made to crash if it received a specially crafted request. oval:org.secpod.oval:def:76237 libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fix: * libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL For more details about the security issue, including the impact, a CVSS score, acknowled ... oval:org.secpod.oval:def:1505264 [0.9.4-3] - Fix CVE-2020-16135 NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL oval:org.secpod.oval:def:2500377 libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. oval:org.secpod.oval:def:89051484 This update for libssh fixes the following issues: Update to version 0.9.8 : * Fix CVE-2023-6004: Command injection using proxycommand * Fix CVE-2023-48795: Potential downgrade attack using strict kex * Fix CVE-2023-6918: Missing checks for return values of MD functions * Allow @ in usernames whe ... oval:org.secpod.oval:def:89051497 This update for libssh fixes the following issues: Update to version 0.9.8 : * Fix CVE-2023-6004: Command injection using proxycommand * Fix CVE-2023-48795: Potential downgrade attack using strict kex * Fix CVE-2023-6918: Missing checks for return values of MD functions * Allow @ in usernames whe ... |