[Bug 1664812] Re: CVE-2016-0787

Launchpad Bug Tracker Wed, 15 Feb 2017 22:31:20 -0800

This bug was fixed in the package libssh2 - 1.7.0-1ubuntu0.1

---------------
libssh2 (1.7.0-1ubuntu0.1) yakkety-security; urgency=medium


  * SECURITY UPDATE: Generated secrets too short during key exchange
    (LP: #1664812).
    - debian/patches/CVE-2016-0787.patch: convert bytes to bits in random
      number generation. Based on upstream patch.
    - CVE-2016-0787

 -- Brian Morton <[email protected]>  Tue, 14 Feb 2017 22:51:13 -0500

** Changed in: libssh2 (Ubuntu)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1664812

Title:
  CVE-2016-0787

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libssh2/+bug/1664812/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1664812] Re: CVE-2016-0787

Reply via email to