Fedora 21: libssh Security Update
Summary
The ssh library was designed to be used by programmers needing a working SSH
implementation by the mean of a library. The complete control of the client is
made by the programmer. With libssh, you can remotely execute programs, transfer
files, use a secure and transparent tunnel for your remote programs. With its
Secure FTP implementation, you can play with remote files easily, without
third-party programs others than libcrypto (from openssl).
Update Information:
Security fix for CVE-2015-3146
Change Log
* Thu Apr 30 2015 Andreas Schneider
References
[ 1 ] Bug #1213775 - CVE-2015-3146 libssh: null pointer dereference due to a logical error in the handling of a SSH_MSG_NEWKEYS and KEXDH_REPLY packets https://bugzilla.redhat.com/show_bug.cgi?id=1213775
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update libssh' at the command line. For more information, refer to "Managing Software with yum", available at .