SUSE: 2019:13982-1 Moderate: libssh2_org Out-Of-Bounds Fixes

suse

March 19, 2019

An update that fixes 9 vulnerabilities is now available

Summary

This update for libssh2_org fixes the following issues: Security issues fixed: - CVE-2019-3861: Fixed Out-of-bounds reads with specially crafted SSH packets (bsc#1128490). - CVE-2019-3862: Fixed Out-of-bounds memory comparison with specially crafted message channel request packet (bsc#1128492). - CVE-2019-3860: Fixed Out-of-bounds reads with specially crafted SFTP packets (bsc#1128481). - CVE-2019-3863: Fixed an Integer overflow in user authenicate keyboard interactive which could allow out-of-bounds writes with specially crafted keyboard responses (bsc#1128493). - CVE-2019-3856: Fixed a potential Integer overflow in keyboard interactive handling which could allow out-of-bounds write with specially crafted payload (bsc#1128472).

Topics Covered

security advisory moderate security fix integer overflow SUSE out-of-bounds libssh2_org

References

#1128471 #1128472 #1128474 #1128476 #1128480

#1128481 #1128490 #1128492 #1128493

Cross- CVE-2019-3855 CVE-2019-3856 CVE-2019-3857

CVE-2019-3858 CVE-2019-3859 CVE-2019-3860

CVE-2019-3861 CVE-2019-3862 CVE-2019-3863

Affected Products:

SUSE Linux Enterprise Software Development Kit 11-SP4

SUSE Linux Enterprise Server 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2019-3855.html

https://www.suse.com/security/cve/CVE-2019-3856.html

https://www.suse.com/security/cve/CVE-2019-3857.html

https://www.suse.com/security/cve/CVE-2019-3858.html

https://www.suse.com/security/cve/CVE-2019-3859.html

https://www.suse.com/security/cve/CVE-2019-3860.html

https://www.suse.com/security/cve/CVE-2019-3861.html

Announcement ID: SUSE-SU-2019:13982-1

Rating: moderate

Topics Covered

security advisory moderate security fix integer overflow SUSE out-of-bounds libssh2_org

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:13982-1 Moderate: libssh2_org Out-Of-Bounds Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:13982-1 Moderate: libssh2_org Out-Of-Bounds Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!