Allele Security Alert
Possible integer overflow in keyboard interactive handling allows out-of-bounds write
The libssh2 project
libssh2 all versions to and including 1.8.0
Proof of concept
A server could send a value approaching unsigned int max number of keyboard prompt requests which could result in an unchecked integer overflow. The value would then be used to allocate memory causing a possible memory write out of bounds error (CWE-130).
Chris Coulson (Canonical Ltd)
libssh2 Security Advisory: CVE-2019-3856
[SECURITY ADVISORIES] libssh2
Security fixes (#315) · libssh2/libssh2@dc109a7
Security fixes by willco007 · Pull Request #315 · libssh2/libssh2
CVE-2019-3856 - Red Hat Customer Portal
CVE-2019-3856 | SUSE
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: March 19, 2019