Source: libssh Version: 0.9.3-2 Severity: important Tags: security upstream Forwarded: https://bugs.libssh.org/T213 Control: found -1 0.8.7-1
Hi, The following vulnerability was published for libssh. CVE-2020-1730[0]: | Client/server denial of service when handling AES-CTR ciphers If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2020-1730 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1730 [1] https://bugs.libssh.org/T213 [2] https://www.libssh.org/security/advisories/CVE-2020-1730.txt Regards, Salvatore