Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Fedora 23: FEDORA-2016-d9f950c779 Critical: libssh SSH Protocol Issue

fedora
Calendar Grey February 28, 2016
Dist Fedora Esm H88
-------------------------------------------------------------------------------- Fedora Update Notif
Fix CVE-2016-0739

Summary

The ssh library was designed to be used by programmers needing a working SSH

implementation by the mean of a library. The complete control of the client is

made by the programmer. With libssh, you can remotely execute programs, transfer

files, use a secure and transparent tunnel for your remote programs. With its

Secure FTP implementation, you can play with remote files easily, without

third-party programs others than libcrypto (from openssl).

Update Information:

Fix CVE-2016-0739

Change Log

References


[ 1 ] Bug #1311259 - CVE-2016-0739 libssh: bits/bytes confusion resulting in truncated Difffie-Hellman secret length [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1311259 [ 2 ] Bug #1311332 - libssh-0.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1311332

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libssh' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libssh
Product: Fedora 23
Version: 0.7.3
Release: 1.fc23
URL: Summary : A library implementing the SSH protocol

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.