| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for libssh2_org (Moderate) |
| Description: |
This update for libssh2_org fixes the following issues:
- Version update to 1.9.0: [bsc#1178083, jsc#SLE-16922] Enhancements and bugfixes: * adds ECDSA keys and host key support when using OpenSSL * adds ED25519 key and host key support when using OpenSSL 1.1.1 * adds OpenSSH style key file reading * adds AES CTR mode support when using WinCNG * adds PEM passphrase protected file support for Libgcrypt and WinCNG * adds SHA256 hostkey fingerprint * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() * adds explicit zeroing of sensitive data in memory * adds additional bounds checks to network buffer reads * adds the ability to use the server default permissions when creating sftp directories * adds support for building with OpenSSL no engine flag * adds support for building with LibreSSL * increased sftp packet size to 256k * fixed oversized packet handling in sftp * fixed building with OpenSSL 1.1 * fixed a possible crash if sftp stat gets an unexpected response * fixed incorrect parsing of the KEX preference string value * fixed conditional RSA and AES-CTR support * fixed a small memory leak during the key exchange process * fixed a possible memory leak of the ssh banner string * fixed various small memory leaks in the backends * fixed possible out of bounds read when parsing public keys from the server * fixed possible out of bounds read when parsing invalid PEM files * no longer null terminates the scp remote exec command * now handle errors when diffie hellman key pair generation fails * improved building instructions * improved unit tests
- Version update to 1.8.2: [bsc#1130103] Bug fixes: * Fixed the misapplied userauth patch that broke 1.8.1 * moved the MAX size declarations from the public header
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1051510
1055117
1068709
1068711
1071995
1083647
1083710
1084929
1100397
1102247
1119222
1123080
1123886
1123919
1127034
1127315
1129770
1130103
1130972
1132091
1133021
1134097
1134390
1134399
1135114
1135335
1135642
1137458
1137534
1137535
1137584
1137609
1137827
1139358
1140133
1140322
1140652
1140903
1140945
1141122
1141401
1141402
1141452
1141453
1141454
1141478
1142023
1142112
1142220
1142221
1142254
1142350
1142351
1142354
1142359
1142450
1142701
1142868
1143003
1143045
1143105
1143185
1143189
1143191
1143507
1144903
1153108
1153158
1153161
1154804
1154805
1155198
1155205
1155298
1155678
1155819
1156158
1156402
1157119
1157377
1158763
1159329
1160673
1160922
1161335
1161719
1163809
1163985
1172383
1172384
1172386
1172495
1172710
1175568
1176625
1178083
CVE-2017-1000231
CVE-2017-1000232
CVE-2018-20855
CVE-2019-10220
CVE-2019-11023
CVE-2019-1125
CVE-2019-11810
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-17133
CVE-2019-17498
CVE-2019-18900
CVE-2019-18904
CVE-2019-2201
CVE-2019-3855
CVE-2019-3856
CVE-2019-3857
CVE-2019-3858
CVE-2019-3859
CVE-2019-3860
CVE-2019-3861
CVE-2019-3862
CVE-2019-3863
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
CVE-2020-10761
CVE-2020-13361
CVE-2020-13362
CVE-2020-13659
CVE-2020-13800
CVE-2020-1720
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
CVE-2020-8027
SUSE-SU-2019:1267-3
SUSE-SU-2019:2971-2
SUSE-SU-2019:3087-1
SUSE-SU-2019:3212-1
SUSE-SU-2020:0260-1
SUSE-SU-2020:0432-1
SUSE-SU-2020:0468-1
SUSE-SU-2020:0589-1
SUSE-SU-2020:0801-1
SUSE-SU-2020:2814-1
SUSE-SU-2020:3551-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information
flash-player-11.2.202.535-0.20 is installed
OR flash-player-gnome-11.2.202.535-0.20 is installed
OR flash-player-kde4-11.2.202.535-0.20 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND Package Information
finch-2.10.9-5 is installed
OR libpurple-2.10.9-5 is installed
OR libpurple-lang-2.10.9-5 is installed
OR libpurple-meanwhile-2.10.9-5 is installed
OR libpurple-tcl-2.10.9-5 is installed
OR pidgin-2.10.9-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
file-5.19-9 is installed
OR file-magic-5.19-9 is installed
OR libmagic1-5.19-9 is installed
OR libmagic1-32bit-5.19-9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
cpp48-4.8.5-30 is installed
OR gcc48-4.8.5-30 is installed
OR gcc48-32bit-4.8.5-30 is installed
OR gcc48-c++-4.8.5-30 is installed
OR gcc48-gij-4.8.5-30 is installed
OR gcc48-gij-32bit-4.8.5-30 is installed
OR gcc48-info-4.8.5-30 is installed
OR libasan0-4.8.5-30 is installed
OR libasan0-32bit-4.8.5-30 is installed
OR libgcj48-4.8.5-30 is installed
OR libgcj48-32bit-4.8.5-30 is installed
OR libgcj48-jar-4.8.5-30 is installed
OR libgcj_bc1-4.8.5-30 is installed
OR libstdc++48-devel-4.8.5-30 is installed
OR libstdc++48-devel-32bit-4.8.5-30 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
accountsservice-0.6.42-14 is installed
OR accountsservice-lang-0.6.42-14 is installed
OR libaccountsservice0-0.6.42-14 is installed
OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
gpgme-1.5.1-1 is installed
OR libgpgme11-1.5.1-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
AND libjpeg-turbo-1.5.3-5.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND Package Information
libssh2-1-1.9.0-4.13 is installed
OR libssh2-1-32bit-1.9.0-4.13 is installed
OR libssh2-devel-1.9.0-4.13 is installed
OR libssh2_org-1.9.0-4.13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
AND Package Information
graphviz-2.40.1-6.3 is installed
OR graphviz-devel-2.40.1-6.3 is installed
OR graphviz-plugins-core-2.40.1-6.3 is installed
OR libgraphviz6-2.40.1-6.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 15 is installed
AND Package Information
kernel-default-4.12.14-150.32 is installed
OR reiserfs-kmp-default-4.12.14-150.32 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND Package Information
kernel-livepatch-4_12_14-195-default-7-19 is installed
OR kernel-livepatch-SLE15-SP1_Update_0-7-19 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
AND Package Information
libldap-data-2.4.46-9.37 is installed
OR openldap2-2.4.46-9.37 is installed
OR openldap2-back-sock-2.4.46-9.37 is installed
OR openldap2-back-sql-2.4.46-9.37 is installed
OR openldap2-contrib-2.4.46-9.37 is installed
OR openldap2-doc-2.4.46-9.37 is installed
OR openldap2-ppolicy-check-password-1.2-9.37 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
AND Package Information
qemu-4.2.1-11.4 is installed
OR qemu-arm-4.2.1-11.4 is installed
OR qemu-audio-alsa-4.2.1-11.4 is installed
OR qemu-audio-pa-4.2.1-11.4 is installed
OR qemu-block-dmg-4.2.1-11.4 is installed
OR qemu-extra-4.2.1-11.4 is installed
OR qemu-linux-user-4.2.1-11.4 is installed
OR qemu-microvm-4.2.1-11.4 is installed
OR qemu-ppc-4.2.1-11.4 is installed
OR qemu-s390-4.2.1-11.4 is installed
OR qemu-seabios-1.12.1+-11.4 is installed
OR qemu-sgabios-8-11.4 is installed
OR qemu-testsuite-4.2.1-11.4 is installed
OR qemu-ui-curses-4.2.1-11.4 is installed
OR qemu-ui-gtk-4.2.1-11.4 is installed
OR qemu-vhost-user-gpu-4.2.1-11.4 is installed
OR qemu-x86-4.2.1-11.4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
AND Package Information
python-libxml2-python-2.9.7-3.12 is installed
OR python2-libxml2-python-2.9.7-3.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND Package Information
postgresql-10-8.3 is installed
OR postgresql-contrib-10-8.3 is installed
OR postgresql-devel-10-8.3 is installed
OR postgresql-docs-10-8.3 is installed
OR postgresql-plperl-10-8.3 is installed
OR postgresql-plpython-10-8.3 is installed
OR postgresql-pltcl-10-8.3 is installed
OR postgresql-server-10-8.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
libX11-6-1.6.2-4 is installed
OR libX11-6-32bit-1.6.2-4 is installed
OR libX11-data-1.6.2-4 is installed
OR libX11-xcb1-1.6.2-4 is installed
OR libX11-xcb1-32bit-1.6.2-4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
kgraft-patch-3_12_74-60_64_40-default-3-2 is installed
OR kgraft-patch-3_12_74-60_64_40-xen-3-2 is installed
OR kgraft-patch-SLE12-SP1_Update_15-3-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
libHX28-3.18-1 is installed
OR libHX28-32bit-3.18-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
libvirt-2.0.0-27.42 is installed
OR libvirt-client-2.0.0-27.42 is installed
OR libvirt-daemon-2.0.0-27.42 is installed
OR libvirt-daemon-config-network-2.0.0-27.42 is installed
OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
OR libvirt-daemon-hooks-2.0.0-27.42 is installed
OR libvirt-daemon-lxc-2.0.0-27.42 is installed
OR libvirt-daemon-qemu-2.0.0-27.42 is installed
OR libvirt-daemon-xen-2.0.0-27.42 is installed
OR libvirt-doc-2.0.0-27.42 is installed
OR libvirt-lock-sanlock-2.0.0-27.42 is installed
OR libvirt-nss-2.0.0-27.42 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
java-1_8_0-openjdk-1.8.0.181-27.26 is installed
OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed
OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed
OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
kgraft-patch-4_4_90-92_45-default-7-2 is installed
OR kgraft-patch-SLE12-SP2_Update_14-7-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
coreutils-8.25-12 is installed
OR coreutils-lang-8.25-12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
kgraft-patch-4_4_156-94_61-default-8-2 is installed
OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
cups-filters-1.0.58-19.2 is installed
OR cups-filters-cups-browsed-1.0.58-19.2 is installed
OR cups-filters-foomatic-rip-1.0.58-19.2 is installed
OR cups-filters-ghostscript-1.0.58-19.2 is installed
OR libqpdf18-7.1.1-3.3 is installed
OR qpdf-7.1.1-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND perl-Config-IniFiles-2.82-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 15-LTSS is installed
AND Package Information
rmt-server-2.5.2-3.26 is installed
OR rmt-server-config-2.5.2-3.26 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for SAP Applications 15 is installed
AND permissions-20180125-3.30 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
ffmpeg-3.4.2-4.5 is installed
OR libavcodec-devel-3.4.2-4.5 is installed
OR libavformat-devel-3.4.2-4.5 is installed
OR libavformat57-3.4.2-4.5 is installed
OR libavresample-devel-3.4.2-4.5 is installed
OR libavresample3-3.4.2-4.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
AND Package Information
LibVNCServer-0.9.10-4.19 is installed
OR libvncclient0-0.9.10-4.19 is installed
OR libvncserver0-0.9.10-4.19 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 6 is installed
AND Package Information
containerd-0.2.4+gitr565_0366d7e-9 is installed
OR docker-1.12.3-81 is installed
OR runc-0.1.1+gitr2816_02f8fa7-9 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND Package Information
kernel-firmware-20170530-21.22 is installed
OR ucode-amd-20170530-21.22 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 8 is installed
AND ansible-2.4.6.0-3.3 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
libdcerpc-binding0-4.6.16+git.169.064abe062be-3.46 is installed
OR libdcerpc-binding0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libdcerpc0-4.6.16+git.169.064abe062be-3.46 is installed
OR libdcerpc0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr-krb5pac0-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr-krb5pac0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr-nbt0-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr-nbt0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr-standard0-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr-standard0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr0-4.6.16+git.169.064abe062be-3.46 is installed
OR libndr0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libnetapi0-4.6.16+git.169.064abe062be-3.46 is installed
OR libnetapi0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-credentials0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-credentials0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-errors0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-errors0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-hostconfig0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-hostconfig0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-passdb0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-passdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-util0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamba-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamdb0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsamdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsmbclient0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsmbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsmbconf0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsmbconf0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libsmbldap0-4.6.16+git.169.064abe062be-3.46 is installed
OR libsmbldap0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libtevent-util0-4.6.16+git.169.064abe062be-3.46 is installed
OR libtevent-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR libwbclient0-4.6.16+git.169.064abe062be-3.46 is installed
OR libwbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-client-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-client-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-doc-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-libs-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-libs-32bit-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-winbind-4.6.16+git.169.064abe062be-3.46 is installed
OR samba-winbind-32bit-4.6.16+git.169.064abe062be-3.46 is installed
|