Search CVE reports
1 – 10 of 51 results
(A weakness has been identified in libssh up to 0.11.3. The impacted el ...)
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
[Denial of Service due to malformed SFTP message]
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
[Denial of Service via inefficient regular expression processing]
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
[Buffer underflow in ssh_get_hexa() on invalid input]
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
[Denial of Service via improper configuration file handling]
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
[Improper sanitation of paths received from SCP servers]
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
[Insecure default configuration leads to local man-in-the-middle attacks on Windows]
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Not affected | Not affected | Not affected | Not affected |
Some fixes available 5 of 6
A flaw was found in libssh's handling of key exchange (KEX) processes when a client repeatedly sends incorrect KEX guesses. The library fails to free memory during these rekey operations, which can gradually exhaust system memory....
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange (KEX) process, an allocation failure in cryptographic functions may lead to a NULL...
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Fixed | Fixed | Fixed |
A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context....
1 affected package
libssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libssh | Fixed | Not affected | Not affected | Not affected |