Home page logo

oss-sec logo oss-sec mailing list archives

libssh 0.5.3 release fixes multiple security issues
From: Vincent Danen <vdanen () redhat com>
Date: Tue, 20 Nov 2012 09:14:38 -0700

As reported to distros@ on 20121114:

A number of flaws were found in libssh prior to 0.5.3 by Xi Wang and Florian
Weimer of the Red Hat Product Security Team:

CVE-2012-4559: multiple double free() flaws
CVE-2012-4560: multiple buffer overflow flaws
CVE-2012-4561: multiple invalid free() flaws
CVE-2012-4562: multiple improper overflow checks


Patches for the flaws are attached to the bugs in our bugzilla.

Vincent Danen / Red Hat Security Response Team

  By Date           By Thread  

Current thread:
  • libssh 0.5.3 release fixes multiple security issues Vincent Danen (Nov 20)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]