Security Advisory

CVE-2019-3857

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-25 18:30:56

Last updated 2025-04-23 19:48:11

Assigner redhat

State PUBLISHED

Description

An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit signal are parsed. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server.

← Browse all CVEs View on cve.org ↗