Re: [SECURITY] [DSA 3487-1] libssh2 security update

To: Stephane Bortzmeyer <bortzmeyer@nic.fr>
Cc: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 3487-1] libssh2 security update
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 23 Feb 2016 17:37:56 +0000
Message-id: <[🔎] 3c8d1e1ea3458e3db93ca6c9f4f3ee2b@mail.adam-barratt.org.uk>
In-reply-to: <[🔎] 20160223163038.GA864@nic.fr>
References: <E1aYFQx-0008Nr-SD@master.debian.org> <[🔎] 20160223163038.GA864@nic.fr>

On 2016-02-23 16:30, Stephane Bortzmeyer wrote:

On Tue, Feb 23, 2016 at 04:03:31PM +0000,
 Salvatore Bonaccorso <carnil@debian.org> wrote
 a message of 50 lines which said:

Package        : libssh2
CVE ID         : CVE-2016-0787

[...]

The text in
<https://www.libssh.org/2016/02/23/libssh-0-7-3-security-and-bugfix-release/>
says it is CVE-2016-0739?

libssh and libssh2 are different packages. -0739 affects libssh, -0787affects libssh2.


Regards,

Adam

Reply to:

References:
- Re: [SECURITY] [DSA 3487-1] libssh2 security update
  - From: Stephane Bortzmeyer <bortzmeyer@nic.fr>