VDB

GCVE-VVD-MAGEIA-2019-343

GCVE-VVD-MAGEIA-2019-343
Advisory Published
Vulnetix · Advisory published November 30, 2019
The updated packages fix a security vulnerability: In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary (out-of-bounds) offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a denial of service condition on the client system when a user connects to the server. (CVE-2019-17498)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageialibssh20 (affected), 1.8.2-1.1.mga7 (unaffected)

References

Updated libssh2 packages fix security vulnerability
advisory
Updated libssh2 packages fix security vulnerability
issue
Updated libssh2 packages fix security vulnerability
advisory
Updated libssh2 packages fix security vulnerability
advisory
Updated libssh2 packages fix security vulnerability
advisory
Updated libssh2 packages fix security vulnerability
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›