-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6365-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 25, 2026 https://www.debian.org/security/faq - -------------------------------------------------------------------------
Package : libssh2 CVE ID : CVE-2025-15661 CVE-2026-7598 CVE-2026-55199 CVE-2026-55200 Multiple security vulnerabilities were discovered in libssh2, a client-side C library implementing the SSH2 protocol which could result in memory disclosure, denial of service or potentially the execution of arbitrary code. For the stable distribution (trixie), these problems have been fixed in version 1.11.1-1+deb13u1. We recommend that you upgrade your libssh2 packages. For the detailed security status of libssh2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libssh2 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: [email protected] -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmo9cRMACgkQEMKTtsN8 TjYVMg//f92XzJQ/Pjf/3WGi6THpkv7EXqxndDjX0rqNmH5BIVvo6IZeoglc9Nc5 HAZTFAlVOsKsQE6x4TjkTep07K7nIRIZoaYrqqAuxeQG7/eKKFoS/IhuNJvI0anS 5ZuPk2UOe9D+6ZALuFNfUDF1gRXxLsFmI46hw/4oHu9WbLAQIwyFF7vHSrfTkIdJ islqfbgwdqwuGu3zpJmhrY31Uh9w26JOBgx/7uGOEojZIYX7zquFdqYzGmErOgu5 UftwsLPzp2k8riah/hHijgr9n4j4X7032yTSSX12VzUnLvC5uW7Lp9bBNSOPMEYW l71MS1qmXwqWGph39btlglF5gZP5uxObax2qjONBW0GJe69VUYlEI0400MKMHOTo PtIlEBWhmN/epltCUJpjCQhPk6qXC9LHtG2wgsz6qi5BVUOAsmquagO4vLUBecI9 +Rrjn7Rd1dtiayqriDJCjvrOUBRgkxI/dz7437JzqXYeNuOkMKi48reYfRsJ4J0p D63R1Fdnz2dcDp45GMUf5EUY6EIi2fM77jEw0rdB9vKioqecu2Lt0YBRC47Y0KdU DZq4qvAGCuI4pIWR/+ytmnokiyYOX8nmGIlo9DiKGh/G6tbKp2yp0zW/p4gFyCp8 V1pydaEhHmWap0CxKEsKqe89P0amzvtl5BeVoPFLpyT6vF8d9AQ= =sYMd -----END PGP SIGNATURE-----

