oss-sec mailing list archives
Re: libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)
From: Sevan Janiyan <venture37 () geeklan co uk>
Date: Wed, 24 Jun 2026 18:52:07 +0100
On 24/06/2026 13:14, Sevan Janiyan wrote:
This url point to https://github.com/advisories/GHSA-R8MH-X5QV-7GG2 as the "Definitive source of threat updates" which references another commit separate from the hashes abovehttps://github.com/libssh2/libssh2/ commit/97acf3dfda80c91c3a8c9f2372546301d4a1a7a8via https://github.com/libssh2/libssh2/pull/2052 "transport.c: Additional boundary checks for packet length"
Ignore this, I was wrong. Sevan
Current thread:
- libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high) James Addison (Jun 23)
- Re: libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high) Alan Coopersmith (Jun 23)
- Re: libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high) Sevan Janiyan (Jun 24)
- Re: libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high) Sevan Janiyan (Jun 24)