VulnerableCode Package Details - pkg:ebuild/net-libs/libssh2@1.7.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:ebuild/net-libs/libssh2@1.7.0

Essentials
History (3)

purl	pkg:ebuild/net-libs/libssh2@1.7.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-cmy6-8sjv-n3h1	Exposure of Sensitive Information to an Unauthorized Actor The diffie_hellman_sha256 function in kex.c in libssh2 improperly truncates secrets to bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH sessions via unspecified vectors, aka a "bits/bytes confusion bug."	CVE-2016-0787
VCID-h9rm-4eet-vuhq	Multiple vulnerabilities have been found in libssh and libssh2, the worst of which allows remote attackers to cause Denial of Service.	CVE-2016-0739
VCID-vytb-d923-nkan	Multiple vulnerabilities have been found in libssh and libssh2, the worst of which allows remote attackers to cause Denial of Service.	CVE-2014-8132

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:01:17.351031+00:00	Gentoo Importer	Fixing	VCID-cmy6-8sjv-n3h1	https://security.gentoo.org/glsa/201606-12	38.0.0
2026-04-01T13:01:17.331859+00:00	Gentoo Importer	Fixing	VCID-h9rm-4eet-vuhq	https://security.gentoo.org/glsa/201606-12	38.0.0
2026-04-01T13:01:17.309373+00:00	Gentoo Importer	Fixing	VCID-vytb-d923-nkan	https://security.gentoo.org/glsa/201606-12	38.0.0