SUSE: 2020:3551-1 Moderate: libssh2_org Software Update

suse

November 27, 2020

An update that fixes 10 vulnerabilities, contains one feature is now available

Summary

This update for libssh2_org fixes the following issues: - Version update to 1.9.0: [bsc#1178083, jsc#SLE-16922] Enhancements and bugfixes: * adds ECDSA keys and host key support when using OpenSSL * adds ED25519 key and host key support when using OpenSSL 1.1.1 * adds OpenSSH style key file reading * adds AES CTR mode support when using WinCNG * adds PEM passphrase protected file support for Libgcrypt and WinCNG * adds SHA256 hostkey fingerprint * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() * adds explicit zeroing of sensitive data in memory * adds additional bounds checks to network buffer reads * adds the ability to use the server default permissions when creating sftp directories * adds support for building with OpenSSL no engine flag * adds support for building with LibreSSL

Topics Covered

security advisory moderate security issue software update feature update SUSE Linux Enterprise libssh2_org

References

#1130103 #1178083 SLE-16922

Cross- CVE-2019-17498 CVE-2019-3855 CVE-2019-3856

CVE-2019-3857 CVE-2019-3858 CVE-2019-3859

CVE-2019-3860 CVE-2019-3861 CVE-2019-3862

CVE-2019-3863

Affected Products:

SUSE Linux Enterprise Server for SAP 15

SUSE Linux Enterprise Server 15-LTSS

SUSE Linux Enterprise Module for Basesystem 15-SP2

SUSE Linux Enterprise Module for Basesystem 15-SP1

SUSE Linux Enterprise High Performance Computing 15-LTSS

SUSE Linux Enterprise High Performance Computing 15-ESPOS

https://www.suse.com/security/cve/CVE-2019-17498.html

https://www.suse.com/security/cve/CVE-2019-3855.html

https://www.suse.com/security/cve/CVE-2019-3856.html

https://www.suse.com/security/cve/CVE-2019-3857.html

https://www.suse.com/security/cve/CVE-2019-3858.html

Announcement ID: SUSE-SU-2020:3551-1

Rating: moderate

Topics Covered

security advisory moderate security issue software update feature update SUSE Linux Enterprise libssh2_org

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:3551-1 Moderate: libssh2_org Software Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:3551-1 Moderate: libssh2_org Software Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!