This update for libssh2_org fixes the following issues:
Add SHA256 support for DH group exchange (fate#320343, bsc#961964)
fix CVE-2016-0787 (bsc#967026)
Weakness in diffie-hellman secret key generation lead to much shorter DH groups
then needed, which could be used to retrieve server keys.
Affected Packages
libssh2-1
SUSE Linux Enterprise Desktop 11 SP4SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4
Fixed in:
1.2.9-4.2.6.1
libssh2_org
SUSE Linux Enterprise Desktop 11 SP4SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4
Fixed in:
1.2.9-4.2.6.1
libssh2-1-32bit
SUSE Linux Enterprise Software Development Kit 11 SP4
Fixed in:
1.2.9-4.2.6.1
libssh2-1-x86
SUSE Linux Enterprise Software Development Kit 11 SP4
Fixed in:
1.2.9-4.2.6.1
libssh2-devel
SUSE Linux Enterprise Software Development Kit 11 SP4