The diffiehellmansha256 function in kex.c in libssh2 before 1.7.0 improperly truncates secrets to 128 or 256 bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH sessions via unspecified vectors, aka a "bits/bytes confusion bug."
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libssh2-1": "1.4.3-2ubuntu0.1", "libssh2-1-dbgsym": "1.4.3-2ubuntu0.1", "libssh2-1-dev-dbgsym": "1.4.3-2ubuntu0.1", "libssh2-1-dbg": "1.4.3-2ubuntu0.1", "libssh2-1-dev": "1.4.3-2ubuntu0.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libssh2-1": "1.5.0-2ubuntu0.1", "libssh2-1-dbgsym": "1.5.0-2ubuntu0.1", "libssh2-1-dev-dbgsym": "1.5.0-2ubuntu0.1", "libssh2-1-dbg": "1.5.0-2ubuntu0.1", "libssh2-1-dev": "1.5.0-2ubuntu0.1" } ] }