ProVide Server does not use libssh and is thereby NOT in any way affected by the recently discovered bug in libssh version 0.6 released in 2014 (CVE-2018-10933). CVE-2018-10933, on applicable systems, allowed access to a server running libssh version 0.6 released in 2014 by presenting the message SSH2_MSG_USERAUTH_SUCCESS instead of SSH2_MSG_USERAUTH_REQUEST.
As we are NOT using libssh this does NOT affect ProVide Server; however we do stress the importance of using updated software, firmware and applying relevant security patches regardless of the system being used.
For more details regarding this please read here.
