Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 488
Alerts This Week
Warning Icon 1 488

Fedora 22 libssh Critical Advisory: CVE-2016-0739 SSH Issue

fedora
Calendar Grey March 13, 2016
Dist Fedora Esm H88
Patch available for Fedora 22 addressing CVE-2016-0739 related to the libssh component, bolstering defense against a recognized vulnerability.
Fix CVE-2016-0739

Summary

The ssh library was designed to be used by programmers needing a working SSH

implementation by the mean of a library. The complete control of the client is

made by the programmer. With libssh, you can remotely execute programs, transfer

files, use a secure and transparent tunnel for your remote programs. With its

Secure FTP implementation, you can play with remote files easily, without

third-party programs others than libcrypto (from openssl).

Update Information:

Fix CVE-2016-0739

Change Log

References


[ 1 ] Bug #1311259 - CVE-2016-0739 libssh: bits/bytes confusion resulting in truncated Difffie-Hellman secret length [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1311259 [ 2 ] Bug #1311332 - libssh-0.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1311332

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libssh' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libssh
Product: Fedora 22
Version: 0.7.3
Release: 1.fc22
URL: Summary : A library implementing the SSH protocol

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.