Oracle Errata SystemOracle Linux5.32021-09-09T12:48:39
ELSA-2019-0679: libssh2 security update (IMPORTANT)
Oracle Linux 7
[1.4.3-12.el7_6.2]
- sanitize public header file (detected by rpmdiff)
[1.4.3-12.el7_6.1]
- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)
IMPORTANTCopyright 2019 Oracle, Inc.CVE-2019-3855CVE-2019-3863CVE-2019-3856CVE-2019-3857libssh2-devellibssh2libssh2-docsoraclelinux-release72f97b74ec551f03^7aarch640:1.4.3-12.el7_6.2x86_64