Bugs fixes in "libssh"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2023-2283 | A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` functi | 2023-06-05 |
| CVE | CVE-2023-1667 | A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a deni | 2023-06-05 |
| CVE | CVE-2023-2283 | A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_data_signature` functi | 2023-06-05 |
| CVE | CVE-2023-1667 | A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a deni | 2023-06-05 |
| CVE | CVE-2021-3634 | Possible heap-buffer overflow when rekeying | 2021-08-26 |
| CVE | CVE-2021-3634 | Possible heap-buffer overflow when rekeying | 2021-08-26 |
| CVE | CVE-2020-16135 | libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL. | 2020-08-04 |
| CVE | CVE-2020-16135 | libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL. | 2020-08-04 |
| CVE | CVE-2020-16135 | libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL. | 2020-08-04 |
| CVE | CVE-2020-16135 | libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL. | 2020-08-04 |
| CVE | CVE-2019-14889 | Unsanitized location in scp could lead to unwanted command execution | 2019-12-10 |
| CVE | CVE-2019-14889 | Unsanitized location in scp could lead to unwanted command execution | 2019-12-10 |
| CVE | CVE-2018-10933 | A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without fir | 2018-11-29 |
| Launchpad | 1805348 | Recent security update broke server-side keyboard-interactive authentication | 2018-11-29 |
| CVE | CVE-2018-10933 | A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without fir | 2018-11-29 |
| Launchpad | 1805348 | Recent security update broke server-side keyboard-interactive authentication | 2018-11-29 |
About
-
Send Feedback to @ubuntu_updates
