Overview

File _patchinfo of Package patchinfo.12600

<patchinfo incident="12600">
  <issue tracker="cve" id="2018-15173"/>
  <issue tracker="cve" id="2017-18594"/>
  <issue tracker="bnc" id="1135350">segmentation fault in nmap</issue>
  <issue tracker="bnc" id="1148742">VUL-0: CVE-2017-18594: nmap: nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse</issue>
  <packager>kstreitova</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for nmap</summary>
  <description>This update for nmap fixes the following issues:

Security issue fixed:

- CVE-2017-18594: Fixed a denial of service condition due to a double free when an SSH connection fails. (bsc#1148742)

Non-security issue fixed:

- Fixed a regression in the version scanner caused, by the fix for CVE-2018-15173. (bsc#1135350)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places