CVE-2019-14889
10.12.2019, 23:15
A flaw was found with the libssh API function ssh_scp_new() in versions before 0.9.3 and before 0.8.8. When the libssh SCP client connects to a server, the scp command, which includes a user-provided path, is executed on the server-side. In case the library is used in a way where users can influence the third parameter of the function, it would become possible for an attacker to inject arbitrary commands, leading to a compromise of the remote target.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| libssh | libssh | 𝑥 < 0.8.8 |
| libssh | libssh | 0.9.0 ≤ 𝑥 < 0.9.3 |
| canonical | ubuntu_linux | 16.04 |
| canonical | ubuntu_linux | 18.04 |
| canonical | ubuntu_linux | 19.04 |
| canonical | ubuntu_linux | 19.10 |
| opensuse | leap | 15.1 |
| debian | debian_linux | 8.0 |
| oracle | mysql_workbench | 𝑥 ≤ 8.0.19 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libssh-config |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| libssh-devel |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| libssh4 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| libssh4-32bit |
|
Red Hat Enterprise Linux Releases
References