vulnerability

Red Hat: CVE-2019-3861: Moderate: libssh2 security, bug fix, and enhancement update (RHSA-2019:2136)

Name: Red Hat: CVE-2019-3861: Moderate: libssh2 security, bug fix, and enhancement update (RHSA-2019:2136)
Creator: Red Hat
Published: 2019-03-25T00:00:00.000Z
Keywords: CVE, Red Hat, 2019, 3861, Moderate, redhat-upgrade-libssh2, redhat-upgrade-libssh2-debuginfo, redhat-upgrade-libssh2-devel, redhat-upgrade-libssh2-docs, Severity 6

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:P)

Published

Mar 25, 2019

Added

Aug 7, 2019

Modified

Feb 19, 2026

Description

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SSH packets with a padding length value greater than the packet length are parsed. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory.

Solutions

redhat-upgrade-libssh2redhat-upgrade-libssh2-debuginforedhat-upgrade-libssh2-develredhat-upgrade-libssh2-docs

References

NVD-CVE-2019-3861
REDHAT-RHSA-2019:2136

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report