eeich/mcphost
SHA256
1
0
Fork 0
forked from AI_MCP/mcphost
Code Pull Requests 1 Activity
7 Commits 2 Branches 0 Tags
CVE_01_2026
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
This branch is 1 commit behind AI_MCP/mcphost:main
Egbert Eich d7bcf5b155 - Fix CVEs 
* GO-2025-4135 (CVE-2025-47914)
    SSH Agent servers do not validate the size of messages
    when processing new identity requests, which may cause
    the program to panic if the message is malformed due to
    an out of bounds read.
  * GO-2025-4116 (CVE-2025-47913)
    SSH clients receiving SSH_AGENT_SUCCESS when expecting a
    typed response will panic and cause early termination of
    the client process.
  * GO-2025-4134 (CVE-2025-58181, bsc#1253952).
    SSH servers parsing GSSAPI authentication
    requests do not validate the number of mechanisms
    specified in the request, allowing an attacker to cause
    unbounded memory consumption.

Signed-off-by: Egbert Eich <eich@suse.com>
2026-01-06 19:13:44 +01:00
_service
- Fix CVEs
2026-01-06 19:13:44 +01:00
.gitattributes
Initial commit
2025-10-29 18:46:37 +01:00
.gitignore
Initial commit
2025-10-29 18:46:37 +01:00
mcphost-0.32.0.tar.gz
Update to v0.32.0
2025-12-10 13:48:14 +00:00
mcphost.changes
- Fix CVEs
2026-01-06 19:13:44 +01:00
mcphost.spec
- Fix CVEs
2026-01-06 19:13:44 +01:00
vendor.tar.gz
- Fix CVEs
2026-01-06 19:13:44 +01:00
Description
https://github.com/mark3labs/mcphost A CLI host application that enables Large Language Models (LLMs) to interact with external tools through the Model Context Protocol (MCP). Currently supports both Claude 3.5 Sonnet and Ollama models. Programming Language: GO
44 MiB
Languages
RPM Spec 100%