CVE-2019-3863

Опубликовано: 25 мар. 2019

Источник: nvd

CVSS3: 7.5

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

A flaw was found in libssh2 before 1.8.1 creating a vulnerability on the SSH client side. A server could send a multiple keyboard interactive response messages whose total length are greater than unsigned char max characters. This value is used by the SSH client as an index to copy memory causing in an out of bounds memory write error.

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00040.html
Mailing List
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00003.html
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0679
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1175
https://access.redhat.com/errata/RHSA-2019:1652
https://access.redhat.com/errata/RHSA-2019:1791
https://access.redhat.com/errata/RHSA-2019:1943
https://access.redhat.com/errata/RHSA-2019:2399
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3863
Issue Tracking
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/03/msg00032.html
Mailing List
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5DK6VO2CEUTAJFYIKWNZKEKYMYR3NO2O/
https://seclists.org/bugtraq/2019/Apr/25
https://security.netapp.com/advisory/ntap-20190327-0005/
Third Party Advisory
https://www.debian.org/security/2019/dsa-4431
https://www.libssh2.org/CVE-2019-3863.html
Patch
Vendor Advisory
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00040.html
Mailing List
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00003.html
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0679
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1175

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*

Версия до 1.8.1 (исключая)

Конфигурация 2

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Конфигурация 3

cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*

Конфигурация 5

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.08763

Низкий

7.5 High

CVSS3

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-190

CWE-787

Связанные уязвимости

CVE-2019-3863

CVSS3: 7.5

ubuntu

почти 7 лет назад

CVE-2019-3863

CVSS3: 7.5

redhat

почти 7 лет назад

A flaw was found in libssh2 before 1.8.1. A server could send a multiple keyboard interactive response messages whose total length are greater than unsigned char max characters. This value is used as an index to copy memory causing in an out of bounds memory write error.

CVE-2019-3863

CVSS3: 7.5

debian

почти 7 лет назад

A flaw was found in libssh2 before 1.8.1 creating a vulnerability on t ...

GHSA-h63q-2463-x5hq

CVSS3: 8.8

github

больше 3 лет назад

BDU:2019-03795

CVSS3: 8.8

fstec

почти 7 лет назад

Уязвимость бибиотеки libssh2, связанная с записью за границами буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании, выполнить произвольный код или раскрыть защищаемую информацию

EPSS

Процентиль: 92%

0.08763

Низкий

7.5 High

CVSS3

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-190

CWE-787