Home

CVE-2019-17498

Description

In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary (out-of-bounds) offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a denial of service condition on the client system when a user connects to the server.

Risk Information

Base Score
8.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
2.198

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2019:2936-1(SUSE Linux Enterprise Desktop 12-SP4 ) libssh2-1-1.4.3-20.14.1.x86_64.rpmLinux
SUSE-SU-2019:2936-1(SUSE Linux Enterprise Desktop 12-SP4 ) libssh2-1-32bit-1.4.3-20.14.1.x86_64.rpmLinux
SUSE-SU-2019:2936-1(SUSE Linux Enterprise Desktop 12-SP4 ) libssh2-1-debuginfo-1.4.3-20.14.1.x86_64.rpmLinux
SUSE-SU-2019:2936-1(SUSE Linux Enterprise Desktop 12-SP4 ) libssh2-1-debuginfo-32bit-1.4.3-20.14.1.x86_64.rpmLinux
SUSE-SU-2019:2936-1(SUSE Linux Enterprise Desktop 12-SP4 ) libssh2_org-debugsource-1.4.3-20.14.1.x86_64.rpmLinux
(RHSA-2020:3915) libssh2 security update libssh2-1.8.0-4.el7.i686.rpmLinux
(RHSA-2020:3915) libssh2 security update libssh2-1.8.0-4.el7.x86_64.rpmLinux
(RHSA-2020:3915) libssh2 security update libssh2-devel-1.8.0-4.el7.i686.rpmLinux
(RHSA-2020:3915) libssh2 security update libssh2-devel-1.8.0-4.el7.x86_64.rpmLinux
(RHSA-2020:3915) libssh2 security update libssh2-docs-1.8.0-4.el7.noarch.rpmLinux
(CESA-2020:3915) libssh2 security update libssh2-1.8.0-4.el7.i686.rpmLinux
(CESA-2020:3915) libssh2 security update libssh2-devel-1.8.0-4.el7.i686.rpmLinux
(CESA-2020:3915) libssh2 security update libssh2-1.8.0-4.el7.x86_64.rpmLinux
(CESA-2020:3915) libssh2 security update libssh2-devel-1.8.0-4.el7.x86_64.rpmLinux
(CESA-2020:3915) libssh2 security update libssh2-docs-1.8.0-4.el7.noarch.rpmLinux
Integer Overflow or Wraparound Vulnerability (CVE-2019-17498)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234