{"id":"CVE-2015-1782","details":"The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.","modified":"2026-04-16T01:44:55.643447532Z","published":"2015-03-13T14:59:00Z","withdrawn":"2026-01-27T04:13:49.556557Z","related":["SUSE-RU-2023:4066-1","SUSE-SU-2015:0669-1","SUSE-SU-2015:0676-1","openSUSE-SU-2024:10190-1"],"references":[{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/151943.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152362.html"},{"type":"ADVISORY","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153933.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2015/dsa-3182"},{"type":"ADVISORY","url":"http://www.libssh2.org/adv_20150311.html"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:148"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/73061"}],"schema_version":"1.7.3"}