ELSA-2019-0679

ULN >
Oracle Linux Errata repository >
ELSA-2019-0679

ELSA-2019-0679 - libssh2 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2019-03-28

Description

[1.4.3-12.el7_6.2]
- sanitize public header file (detected by rpmdiff)

[1.4.3-12.el7_6.1]
- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	libssh2-1.4.3-12.el7_6.2.src.rpm	312c1dd6cc5e0c7b1231672df861534da9b673978c7453b80d51d02ade07c642	ELSA-2023-5615	ol7_aarch64_latest
	libssh2-1.4.3-12.el7_6.2.src.rpm	312c1dd6cc5e0c7b1231672df861534da9b673978c7453b80d51d02ade07c642	ELSA-2023-5615	ol7_aarch64_optional_latest
	libssh2-1.4.3-12.el7_6.2.aarch64.rpm	03a7f2d1a724a2776dabfd63b3c3b36d558d026487389bcea4d2fa76037e44bb	ELSA-2023-5615	ol7_aarch64_latest
	libssh2-devel-1.4.3-12.el7_6.2.aarch64.rpm	5700fa1c3f5f5f40d03f37831d7209130f2dc9dc3a75c62209293d6d7afabe86	ELSA-2023-5615	ol7_aarch64_optional_latest
	libssh2-docs-1.4.3-12.el7_6.2.noarch.rpm	2f65807cf77cb0203d3c15b72ea8f6fdef6d6b3fbe7c9b83b47f0e255760cc32	ELSA-2023-5615	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	libssh2-1.4.3-12.el7_6.2.src.rpm	312c1dd6cc5e0c7b1231672df861534da9b673978c7453b80d51d02ade07c642	ELSA-2023-5615	ol7_x86_64_latest
	libssh2-1.4.3-12.el7_6.2.src.rpm	312c1dd6cc5e0c7b1231672df861534da9b673978c7453b80d51d02ade07c642	ELSA-2023-5615	ol7_x86_64_optional_latest
	libssh2-1.4.3-12.el7_6.2.src.rpm	312c1dd6cc5e0c7b1231672df861534da9b673978c7453b80d51d02ade07c642	ELSA-2023-5615	ol7_x86_64_u6_patch
	libssh2-1.4.3-12.el7_6.2.i686.rpm	12e8d158c5441f2902a6b8b2d0855a4d7ad18b216e5fddc3da6f45f59e425a13	ELSA-2023-5615	ol7_x86_64_latest
	libssh2-1.4.3-12.el7_6.2.i686.rpm	12e8d158c5441f2902a6b8b2d0855a4d7ad18b216e5fddc3da6f45f59e425a13	ELSA-2023-5615	ol7_x86_64_u6_patch
	libssh2-1.4.3-12.el7_6.2.x86_64.rpm	be13f247a6ac6f16cd9dd83e435b4d405baaeff3e1a56ad1c7f0308dbaa122e7	ELSA-2023-5615	exadata_dbserver_19.2.2.0.0_x86_64_base
	libssh2-1.4.3-12.el7_6.2.x86_64.rpm	be13f247a6ac6f16cd9dd83e435b4d405baaeff3e1a56ad1c7f0308dbaa122e7	ELSA-2023-5615	exadata_dbserver_19.2.3.0.0_x86_64_base
	libssh2-1.4.3-12.el7_6.2.x86_64.rpm	be13f247a6ac6f16cd9dd83e435b4d405baaeff3e1a56ad1c7f0308dbaa122e7	ELSA-2023-5615	ol7_x86_64_latest
	libssh2-1.4.3-12.el7_6.2.x86_64.rpm	be13f247a6ac6f16cd9dd83e435b4d405baaeff3e1a56ad1c7f0308dbaa122e7	ELSA-2023-5615	ol7_x86_64_u6_patch
	libssh2-devel-1.4.3-12.el7_6.2.i686.rpm	4c6123c04da095e0390a00cd15518500f2841939d24871f31dcaca6a0aacbd27	ELSA-2023-5615	ol7_x86_64_optional_latest
	libssh2-devel-1.4.3-12.el7_6.2.x86_64.rpm	21167a49532973ec670edc95f97775f3cf457959c302fd765d004fd5bb0a6578	ELSA-2023-5615	ol7_x86_64_optional_latest
	libssh2-docs-1.4.3-12.el7_6.2.noarch.rpm	2f65807cf77cb0203d3c15b72ea8f6fdef6d6b3fbe7c9b83b47f0e255760cc32	ELSA-2023-5615	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691