Release date:
2026-05-08 11:40:09 UTC
Description:
- CVE-2019-13115: add bounds-checked string_buf helpers and use them in
diffie_hellman_sha1() to prevent out-of-bounds read on malformed KEX
reply
- CVE-2019-17498: harden bounds checks in SSH_MSG_DISCONNECT,
SSH_MSG_DEBUG and SSH_MSG_GLOBAL_REQUEST handlers to prevent integer
overflow / out-of-bounds read
Updated packages:
-
libssh2-1.4.2-3.0.1.el6_10.1.tuxcare.els3.i686.rpm
sha:1a7cbe7deb6f33254ddd42e1585368aaa381b34c473fd683c6be3092eaf6b445
-
libssh2-1.4.2-3.0.1.el6_10.1.tuxcare.els3.x86_64.rpm
sha:785145884d965b4b0f44a0182912724717473626a902f899d494fea471a6afbc
-
libssh2-devel-1.4.2-3.0.1.el6_10.1.tuxcare.els3.i686.rpm
sha:bbf78d01cad1afaf5f12311a84ab9e9f467543f6a03fa6746e4103e87c38fb4a
-
libssh2-devel-1.4.2-3.0.1.el6_10.1.tuxcare.els3.x86_64.rpm
sha:245384ec147ceecbc326d1a8b5a4e495c624127f28e07083238896def591866f
-
libssh2-docs-1.4.2-3.0.1.el6_10.1.tuxcare.els3.x86_64.rpm
sha:dcb5a2b845ea82fbe79a0dfb28a6834e8d57259d5501d47271980fdeba902b3b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
