Release date:
2025-09-12 07:36:08 UTC
Description:
* SECURITY UPDATE: out-of-bounds read in sftp_handle function
- debian/patches/CVE-2025-5318.patch: fix possible buffer overrun by
changing '> SFTP_HANDLES' to '>= SFTP_HANDLES'
- CVE-2025-5318
Updated packages:
-
libssh-4_0.8.0~20170825.94fa1e38-1ubuntu0.7+tuxcare.els2_amd64.deb
sha:f43b5200a8d38fbd5e0d8ecc3e9ab6fd847eee19
-
libssh-dev_0.8.0~20170825.94fa1e38-1ubuntu0.7+tuxcare.els2_amd64.deb
sha:4db9ea94c9f314061431ef886860eff0bd3b1224
-
libssh-doc_0.8.0~20170825.94fa1e38-1ubuntu0.7+tuxcare.els2_all.deb
sha:0184c00261a40e236714ba23c168bd876685822a
-
libssh-gcrypt-4_0.8.0~20170825.94fa1e38-1ubuntu0.7+tuxcare.els2_amd64.deb
sha:dbcb4e86556ed1bc6754f60d14fa52e24e82cc8c
-
libssh-gcrypt-dev_0.8.0~20170825.94fa1e38-1ubuntu0.7+tuxcare.els2_amd64.deb
sha:b7332f2e1c6c9253c96b768e552a62158f39c759
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
