VYPR

rpm package

suse/libssh2_org&distro=SUSE Manager Server 4.2

pkg:rpm/suse/libssh2_org&distro=SUSE%20Manager%20Server%204.2

Vulnerabilities (2)

  • CVE-2020-22218Aug 22, 2023
    affected < 1.9.0-150000.4.16.1fixed 1.9.0-150000.4.16.1

    An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.

  • CVE-2019-17498Oct 21, 2019
    affected < 1.11.0-150000.4.19.1fixed 1.11.0-150000.4.19.1

    In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary (out-of-bounds) offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive inf