AVG-780

Package libssh
Status Fixed
Severity Critical
Type authentication bypass
Affected 0.8.3-1
Fixed 0.8.4-1
Current 0.8.6-1 [extra]
Ticket None
Created Tue Oct 16 14:36:19 2018
Issue Severity Remote Type Description
CVE-2018-10933 Critical Yes Authentication bypass
An authentication bypass vulnerability has been discovered in libssh versions prior to 0.7.6 and 0.8.4, in the server-side state machine. By presenting the...
Date Advisory Package Description
17 Oct 2018 ASA-201810-10 libssh authentication bypass
References
https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/