1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2023-5fa5ca2043

[FEDORA-2023-5fa5ca2043] Fedora 37: libssh

Severity Medium
Affected Packages 1
CVEs 2
Info Packages References Vulnerabilities

Update to 0.10.5 (CVE-2023-1667 CVE-2023-2283)

Package Affected Version
pkg:rpm/fedora/libssh?distro=fedora-37 < 0.10.5.1.fc37
ID
FEDORA-2023-5fa5ca2043
Severity
medium
Severity from
CVE-2023-1667
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2023-5fa5ca2043
Published
2023-05-28T02:56:47
(15 months ago)
Modified
2023-05-28T02:56:47
(15 months ago)
Rights
Copyright 2023 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2182199 Bug #2182199 - CVE-2023-1667 libssh: NULL pointer dereference during rekeying with algorithm guessing https://bugzilla.redhat.com/show_bug.cgi?id=2182199
Bugzilla 2189736 Bug #2189736 - CVE-2023-2283 libssh: authorization bypass in pki_verify_data_signature https://bugzilla.redhat.com/show_bug.cgi?id=2189736
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/libssh?distro=fedora-37 fedora libssh < 0.10.5.1.fc37 fedora-37
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date