CVE-2019-3855

Published: Mar 21, 2019Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server.

Affected (18)

Products: Libssh2: Libssh2 · Fedoraproject: Fedora · Debian: Debian Linux · +5 more

Show all products

1 product

1 product

1 product

1 product

Ontap Select Deploy Administration Utility

Redhat

7 products

Enterprise Linux

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

1 product

1 product

1 product

Peoplesoft Enterprise Peopletools

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Libssh2 Libssh2	Before 1.8.1

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 28
Fedoraproject Fedora	Version 29
Fedoraproject Fedora	Version 30

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Netapp Ontap Select Deploy Administration Utility	All versions

Configuration E

7 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 8.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Workstation	Version 7.0

Configuration F

1 vulnerable

Vulnerable Software	Affected Versions
Opensuse Leap	Version 42.3

Configuration G

1 vulnerable

Vulnerable Software	Affected Versions
Apple Xcode	Before 11.0

Configuration H

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Peoplesoft Enterprise Peopletools	Version 8.56
Oracle Peoplesoft Enterprise Peopletools	Version 8.57

Related CWEs

CWE-190

Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (54)

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00040.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00003.html

Source: secalert@redhat.com

Third Party Advisory

http://packetstormsecurity.com/files/152136/Slackware-Security-Advisory-libssh2-Updates.html

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://seclists.org/fulldisclosure/2019/Sep/42

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2019/03/18/3

Source: secalert@redhat.com

Mailing ListPatchThird Party Advisory

http://www.securityfocus.com/bid/107485

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2019:0679

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1175

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1652

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1791

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1943

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:2399

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3855

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2019/03/msg00032.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5DK6VO2CEUTAJFYIKWNZKEKYMYR3NO2O/

Source: secalert@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6LUNHPW64IGCASZ4JQ2J5KDXNZN53DWW/

Source: secalert@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M7IF3LNHOA75O4WZWIHJLIRMA5LJUED3/

Source: secalert@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XCWEA5ZCLKRDUK62QVVYMFWLWKOPX3LO/

Source: secalert@redhat.com

https://seclists.org/bugtraq/2019/Apr/25

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://seclists.org/bugtraq/2019/Mar/25

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://seclists.org/bugtraq/2019/Sep/49

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://security.netapp.com/advisory/ntap-20190327-0005/

Source: secalert@redhat.com

Third Party Advisory

https://support.apple.com/kb/HT210609

Source: secalert@redhat.com

Third Party Advisory

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2019-767

Source: secalert@redhat.com

Third Party Advisory

https://www.debian.org/security/2019/dsa-4431

Source: secalert@redhat.com

Third Party Advisory

https://www.libssh2.org/CVE-2019-3855.html

Source: secalert@redhat.com

PatchVendor Advisory

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Source: secalert@redhat.com

PatchThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00040.html