Updated libssh packages fix security vulnerability
Publication date: 19 Dec 2019Modification date: 19 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-14889
Description
Updated libssh packages fix security vulnerability: In an environment where a user is only allowed to copy files and not to execute applications, it would be possible to pass a location which contains commands to be executed in addition (CVE-2019-14889).
References
SRPMS
7/core
- libssh-0.8.8-1.mga7