Search for packages
| purl | pkg:deb/debian/libssh2@1.4.2-1.1%2Bdeb7u2 |
| Next non-vulnerable version | 1.9.0-2+deb11u1 |
| Latest non-vulnerable version | 1.9.0-2+deb11u1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-97nz-s1q6-x3fc
Aliases: CVE-2019-3861 |
Out-of-bounds Read An out-of-bounds read flaw was discovered in libssh2 in the way SSH packets with a padding length value greater than the packet length are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-bcba-qntz-gkez
Aliases: CVE-2019-3863 |
Out-of-bounds Write A flaw was found in libssh2 A server could send a multiple keyboard interactive response messages whose total length are greater than unsigned char max characters. This value is used as an index to copy memory causing in an out-of-bounds memory write error. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-chdt-29cx-dyas
Aliases: CVE-2015-1782 |
Improper Input Validation The kex_agree_methods function in libssh2 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet. |
Affected by 13 other vulnerabilities. |
|
VCID-cmy6-8sjv-n3h1
Aliases: CVE-2016-0787 |
Exposure of Sensitive Information to an Unauthorized Actor The diffie_hellman_sha256 function in kex.c in libssh2 improperly truncates secrets to bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH sessions via unspecified vectors, aka a "bits/bytes confusion bug." |
Affected by 13 other vulnerabilities. Affected by 12 other vulnerabilities. |
|
VCID-f1me-9vqd-j7f6
Aliases: CVE-2019-3855 |
Out-of-bounds Write An integer overflow flaw which could lead to an out-of-bounds write was discovered in libssh2 in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-grd5-zwxv-cqfw
Aliases: CVE-2019-17498 |
libssh2: integer overflow in SSH_MSG_DISCONNECT logic in packet.c |
Affected by 0 other vulnerabilities. |
|
VCID-gv2u-298u-jkcv
Aliases: CVE-2019-3859 |
Out-of-bounds Read An out-of-bounds read flaw was discovered in libssh2 in the _libssh2_packet_require and _libssh2_packet_requirev functions. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-jp7j-dwbq-zkgk
Aliases: CVE-2019-13115 |
libssh2: integer overflow in kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c leads to out-of-bounds write |
Affected by 0 other vulnerabilities. |
|
VCID-k1js-k8q3-ekb2
Aliases: CVE-2019-3860 |
Out-of-bounds Read An out-of-bounds read flaw was discovered in libssh2 in the way SFTP packets with empty payloads are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-mevw-g6yq-eqa8
Aliases: CVE-2019-3857 |
Out-of-bounds Write An integer overflow flaw which could lead to an out-of-bounds write was discovered in libssh2 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit signal are parsed. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-qjzc-2hvn-2qg3
Aliases: CVE-2019-3856 |
Out-of-bounds Write An integer overflow flaw, which could lead to an out-of-bounds write, was discovered in libssh2 in the way keyboard prompt requests are parsed. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-rv81-jwkz-w7b5
Aliases: CVE-2019-3858 |
Out-of-bounds Read An out-of-bounds read flaw was discovered in libssh2 when a specially crafted SFTP packet is received from the server. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-sy5b-nfqk-6ucm
Aliases: CVE-2019-3862 |
Out-of-bounds Read An out-of-bounds read flaw was discovered in libssh2 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit status message and no payload are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory. |
Affected by 12 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-wka6-6yn3-ubb1
Aliases: CVE-2020-22218 |
libssh2: use-of-uninitialized-value in _libssh2_transport_read |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-chdt-29cx-dyas | Improper Input Validation The kex_agree_methods function in libssh2 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet. |
CVE-2015-1782
|
| VCID-cmy6-8sjv-n3h1 | Exposure of Sensitive Information to an Unauthorized Actor The diffie_hellman_sha256 function in kex.c in libssh2 improperly truncates secrets to bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH sessions via unspecified vectors, aka a "bits/bytes confusion bug." |
CVE-2016-0787
|