Overview

File _patchinfo of Package patchinfo.484

<patchinfo incident="484">
  <issue id="921070" tracker="bnc">VUL-0: EMBARGOED: CVE-2015-1782: libssh2_org: Using SSH_MSG_KEXINIT data unbounded</issue>
  <issue id="CVE-2015-1782" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>vitezslav_cizek</packager>
<description>
The ssh client library libssh2_org was updated to fix a security issue.

CVE-2015-1782: A malicious server could send a crafted SSH_MSG_KEXINIT
packet, that could lead to a buffer overread and to a crash of the
libssh2_org using application.
</description>
  <summary>Security update for libssh2_org</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places