libssh2-1.8.0-4.el7.1
エラータID: AXSA:2023-6489:01
Release date:
Wednesday, October 11, 2023 - 08:34
Subject:
libssh2-1.8.0-4.el7.1
Affected Channels:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
The libssh2 packages provide a library that implements the SSH2 protocol.
Security Fix(es):
* libssh2: use-of-uninitialized-value in _libssh2_transport_read (CVE-2020-22218)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2020-22218
An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.
Solution:
Update packages.
CVEs:
CVE-2020-22218
An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.
An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory.
Additional Info:
N/A
Download:
SRPMS
- libssh2-1.8.0-4.el7.1.src.rpm
MD5: 8cac49344150b7808874a6dd39fcec2b
SHA-256: 3143ddad77240a20fe57044ea811fc002cb1b84719a15c6209c9dbb0f2e25ad6
Size: 862.42 kB
Asianux Server 7 for x86_64
- libssh2-1.8.0-4.el7.1.i686.rpm
MD5: 23c1587697b3d69b69f5d16931e051bc
SHA-256: fbd031e973e66c81baa823bbdf034778eb5554c28e96bdfd28ce0980c4efa05f
Size: 87.57 kB - libssh2-1.8.0-4.el7.1.x86_64.rpm
MD5: 3a7e7f88aedcca9f8ea0b8bab3773cd6
SHA-256: e0dda865f4e7a7d0ed441563a3abc844197dcd640f6e9efbaf69c22882729784
Size: 87.08 kB