Candidate: CVE-2019-3863
PublicDate: 2019-03-25 18:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3863
 https://www.libssh2.org/CVE-2019-3863.html
 https://github.com/libssh2/libssh2/pull/315
Description:
 A flaw was found in libssh2 before 1.8.1. A server could send a multiple
 keyboard interactive response messages whose total length are greater than
 unsigned char max characters. This value is used as an index to copy memory
 causing in an out of bounds memory write error.
Ubuntu-Description:
 It was discovered that libssh2 incorrectly handled interactive response
 messages length. A remote attacker could possibly use this issue to
 execute arbitrary code.
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [8.8 HIGH]


Patches_libssh2:
upstream_libssh2: needs-triage
precise/esm_libssh2: DNE
trusty_libssh2: ignored (out of standard support)
trusty/esm_libssh2: needed
xenial_libssh2: ignored (end of standard support, was needed)
bionic_libssh2: needed
cosmic_libssh2: ignored (reached end-of-life)
disco_libssh2: not-affected (1.8.0-2.1)
eoan_libssh2: not-affected (1.8.0-2.1)
focal_libssh2: not-affected (1.8.0-2.1)
groovy_libssh2: not-affected (1.8.0-2.1)
hirsute_libssh2: not-affected (1.8.0-2.1)
impish_libssh2: not-affected (1.8.0-2.1)
jammy_libssh2: not-affected (1.8.0-2.1)
devel_libssh2: not-affected (1.8.0-2.1)