Risk | Low |
Patch available | YES |
Number of vulnerabilities | 1 |
CVE-ID | CVE-2019-3861 |
CWE-ID | CWE-125 |
Exploitation vector | Network |
Public exploit | N/A |
Vulnerable software |
IBM Tivoli Storage Manager Server applications / File servers (FTP/HTTP) libssh2 (Alpine package) Operating systems & Components / Operating system package or component |
Vendor |
IBM Corporation Alpine Linux Development Team |
Security Bulletin
This security bulletin contains one low risk vulnerability.
EUVDB-ID: #VU18252
Risk: Low
CVSSv4.0: 0.2 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2019-3861
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information or perform denial of service (DoS) attack.
The vulnerability exists due to a boundary condition when SSH packets with a padding length value greater than the packet length are parsed. A remote attacker can trick the victim to connect to a malicious SSH server, trigger out of bounds read and gain access to sensitive information or perform denial of service attack.
Install update from vendor's website.
Vulnerable software versionsIBM Tivoli Storage Manager: 7.1.4.1
libssh2 (Alpine package): 2.11-1
libssh2 (Alpine package): 2.0.3 - 2.0.4
libssh2 (Alpine package): 1.20130913-1
libssh2 (Alpine package): 2.9
libssh2 (Alpine package): 0.5.8-0ubuntu1
libssh2 (Alpine package): 2.0.28
libssh2 (Alpine package): 1.5.27ubuntu2 - 1.5.28
libssh2 (Alpine package): 2.2.1-4 - 2.2.1-46-g10887d272-2
libssh2 (Alpine package): 5 - 9
libssh2 (Alpine package): 8.20-3ubuntu2 - 8.21-1ubuntu2
libssh2 (Alpine package): 10.0
libssh2 (Alpine package): 9.0.2.881
libssh2 (Alpine package): 7.0.3
libssh2 (Alpine package): 2007
libssh2 (Alpine package):
libssh2 (Alpine package): before 1.8.1-r0
CPE2.3https://git.alpinelinux.org/aports/commit/?id=d60ef1f3b3cd3b40d41722b7de616227c0b83a2b
https://git.alpinelinux.org/aports/commit/?id=eec223036af35046c74baca7b09d6a81aaccbe86
https://git.alpinelinux.org/aports/commit/?id=0c38351d5beace23bc498ea5fc79b3ba6a012b6e
https://git.alpinelinux.org/aports/commit/?id=27f813a2ece1924d1c8f2e02239ad214611599fb
https://git.alpinelinux.org/aports/commit/?id=4f69ccce51fcfa18af42948e79d26c5d0ba42733
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.