libssh-0.9.4-3.el8

エラータID: AXSA:2021-2641:02

Release date: 
Sunday, December 12, 2021 - 05:43
Subject: 
libssh-0.9.4-3.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Low
Description: 

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications.

Security Fix(es):

* libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL (CVE-2020-16135)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-16135
libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.

Solution: 

Update packages.

CVEs: 
CVE-2020-16135
libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.
Additional Info: 

N/A

Download: 

SRPMS
  1. libssh-0.9.4-3.el8.src.rpm
    MD5: 4ad8442ff23995e0b427d55bb67d4b59
    SHA-256: 9a304423b69528ac1c89a7850a792a16a741288e4a8a77b8f6a00092163ba921
    Size: 521.30 kB

Asianux Server 8 for x86_64
  1. libssh-0.9.4-3.el8.x86_64.rpm
    MD5: 2ea905ead3e0a32d260ec4742ae00a47
    SHA-256: 0e9243fc418d4e3b8efc05115c01a3e4eeb6bf7f3d8bed68ebbbfeef9c2f7718
    Size: 213.54 kB
  2. libssh-config-0.9.4-3.el8.noarch.rpm
    MD5: 12d052773acc712a054bb62b38e2aa58
    SHA-256: d69ccd0822d7f2d3e03f96feffc030816421141c906e75ff311113a1e11ba824
    Size: 17.56 kB
  3. libssh-devel-0.9.4-3.el8.x86_64.rpm
    MD5: 1aed9f3f3d3d709ef92ff6d6ebdfdd8d
    SHA-256: ac9a1cbac19186a1c4af4774890cffd0f97c59450a84ae24cb1de7091c984600
    Size: 436.79 kB
  4. libssh-0.9.4-3.el8.i686.rpm
    MD5: 517052b82c53e76126956c963f5cdc3a
    SHA-256: 9e657c7cafee710113b82d7c2c82c8248054ffcbae9f1a7c636ac17f10a45a12
    Size: 233.18 kB
  5. libssh-devel-0.9.4-3.el8.i686.rpm
    MD5: b1b5668c71005e2940ae67c29f1aa36f
    SHA-256: 3638dcdea120f056b4c553410688e6cd49ede182b50cc9875ca2450fffa48b71
    Size: 436.87 kB