{"affected":[{"ecosystem_specific":{"binaries":[{"libssh4":"0.6.3-8.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12","name":"libssh","purl":"pkg:rpm/suse/libssh&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.6.3-8.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"The encryption library libssh was updated to fix one security issue.\n\nThe following vulnerability was fixed:\n\n* CVE-2015-3146: Unauthenticated remote attackers could crash the server or client with specially crafted packages.\n","id":"SUSE-SU-2015:1707-1","modified":"2015-10-01T08:51:47Z","published":"2015-10-01T08:51:47Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20151707-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/928323"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-3146"}],"related":["CVE-2015-3146"],"summary":"Security update for libssh","upstream":["CVE-2015-3146"]}