RHSA-2016:0566-01 -- Redhat libsshID: oval:org.secpod.oval:def:502174 | Date: (C)2017-10-25 (M)2022-09-22 |
Class: PATCH | Family: unix |
libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fix: * A type confusion issue was found in the way libssh generated ephemeral secrets for the diffie-hellman-group1 and diffie-hellman-group14 key exchange methods. This would cause an SSHv2 Diffie-Hellman handshake to use significantly less secure random parameters. Red Hat would like to thank Aris Adamantiadis for reporting this issue.
Platform: |
Red Hat Enterprise Linux 7 |