Micka wrote:
> https://github.com/libssh2/libssh2/pull/402
Commit dedcbd106f8e52d5586b0205bc7677e4c9868f9c
> I hope that one day there will be an official release :)
How do release engineering people (Will? Daniel?) feel about a 1.9.1
release branched off 1.9.0 with only a couple of CVE fixes c
And already committed on the master branch :
https://github.com/libssh2/libssh2/pull/402
I hope that one day there will be an official release :)
Micka,
Le jeu. 11 mars 2021 à 19:28, Micka a écrit :
> I found this patch :
>
>
> https://github.com/Cisco-Talos/clamav-mussels-cookbook/blob/maste
I found this patch :
https://github.com/Cisco-Talos/clamav-mussels-cookbook/blob/master/recipes/libssh2-1.9-patches/CVE-2019-17498-integer-overflow.patch
(not mine)
Le jeu. 11 mars 2021 à 18:49, Sarathe, Omprakash <
omprakash.sara...@siemens.com> a écrit :
> Hi All,
>
>
>
> As per *CVE-2019-17
Hi All,
As per CVE-2019-17498 there is a vulnerability with libssh2 version
1.9.0(Please see below more detail). Can you please confirm the official
release date of libssh2 having CVE-2019-17498 vulnerability fix.
CVE-2019-17498
In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT
