LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

Synopsis: Moderate: libssh2 security update
Advisory ID:       SLSA-2019:1884-1
Issue Date:        2019-07-29
CVE Numbers:       CVE-2019-3862
--

Security Fix(es):

* libssh2: Out-of-bounds memory comparison with specially crafted message
channel request (CVE-2019-3862)
--

SL7
  x86_64
    libssh2-1.4.3-12.el7_6.3.i686.rpm
    libssh2-1.4.3-12.el7_6.3.x86_64.rpm
    libssh2-debuginfo-1.4.3-12.el7_6.3.i686.rpm
    libssh2-debuginfo-1.4.3-12.el7_6.3.x86_64.rpm
    libssh2-devel-1.4.3-12.el7_6.3.i686.rpm
    libssh2-devel-1.4.3-12.el7_6.3.x86_64.rpm
    libssh2-1.4.3-12.el7_6.3.src.rpm
  noarch
    libssh2-docs-1.4.3-12.el7_6.3.noarch.rpm

- Scientific Linux Development Team