Advisories ยป MGASA-2019-0402

Updated libssh packages fix security vulnerability

Publication date: 19 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-14889

Description

Updated libssh packages fix security vulnerability:

In an environment where a user is only allowed to copy files and not to
execute applications, it would be possible to pass a location which
contains commands to be executed in addition (CVE-2019-14889).
                

References

SRPMS

7/core