FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libssh2 -- denial of service vulnerability

Affected packages
libssh2 < 1.5.0,2

Details

VuXML ID 9770d6ac-614d-11e5-b379-14dae9d210b8
Discovery 2015-01-25
Entry 2015-09-22
Modified 2015-09-22

Mariusz Ziulek reports:

A malicious attacker could man in the middle a real server and cause libssh2 using clients to crash (denial of service) or otherwise read and use completely unintended memory areas in this process.

[source]

References

CVE Name CVE-2015-1782
URL http://www.libssh2.org/adv_20150311.html
URL https://trac.libssh2.org/ticket/294

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.