{"id":"CVE-2015-1782","details":"The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.","modified":"2026-02-04T02:23:04.791426Z","published":"2015-03-13T14:59:00Z","related":["MGASA-2015-0107","SUSE-RU-2023:4066-1","SUSE-SU-2015:0669-1","SUSE-SU-2015:0676-1","openSUSE-SU-2024:10190-1"],"references":[{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/151943.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152362.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153933.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2015/dsa-3182"},{"type":"ADVISORY","url":"http://www.libssh2.org/adv_20150311.html"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:148"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/73061"}],"schema_version":"1.7.3"}