Vulnerabilities (CVE)

Vendor filter

Libssh Subscribe

Filter

11 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-10933 6 Libssh, Canonical, Debian and 3 more 8 Libssh, Ubuntu Linux, Debian Linux and 5 more 2019-10-09 6.4
A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.
CVE-2014-8132 6 Libssh, Debian, Fedoraproject and 3 more 6 Debian Linux, Ubuntu Linux, Fedora and 3 more 2018-10-30 5.0
Double free vulnerability in the ssh_packet_kexinit function in kex.c in libssh 0.5.x and 0.6.x before 0.6.4 allows remote attackers to cause a denial of service via a crafted kexinit packet.
CVE-2016-0739 5 Fedoraproject, Debian, Libssh and 2 more 5 Debian Linux, Ubuntu Linux, Enterprise Linux and 2 more 2017-12-09 4.3
libssh before 0.7.3 improperly truncates ephemeral secrets generated for the (1) diffie-hellman-group1 and (2) diffie-hellman-group14 key exchange methods to 128 bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept...
CVE-2013-0176 1 Libssh 1 Libssh 2017-08-29 4.3
The publickey_from_privatekey function in libssh before 0.5.4, when no algorithm is matched during negotiations, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a "Client: Diffie-Hellman Key Exchange...
CVE-2012-4562 1 Libssh 1 Libssh 2017-08-29 7.5
Multiple integer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (infinite loop or crash) and possibly execute arbitrary code via unspecified vectors, which triggers a buffer overflow, infinite loop, or...
CVE-2012-4561 1 Libssh 1 Libssh 2017-08-29 5.0
The (1) publickey_make_dss, (2) publickey_make_rsa, (3) signature_from_string, (4) ssh_do_sign, and (5) ssh_sign_session_id functions in keys.c in libssh before 0.5.3 free "an invalid pointer on an error path," which might allow remote attackers...
CVE-2012-4560 1 Libssh 1 Libssh 2017-08-29 7.5
Multiple buffer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors.
CVE-2012-4559 1 Libssh 1 Libssh 2017-08-29 6.8
Multiple double free vulnerabilities in the (1) agent_sign_data function in agent.c, (2) channel_request function in channels.c, (3) ssh_userauth_pubkey function in auth.c, (4) sftp_parse_attr_3 function in sftp.c, and (5) try_publickey_from_file...
CVE-2015-3146 4 Debian, Fedoraproject, Canonical and 1 more 4 Debian Linux, Ubuntu Linux, Fedora and 1 more 2016-04-20 5.0
The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in package_cb.c in libssh before 0.6.5 do not properly validate state, which allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a...
CVE-2014-0017 1 Libssh 1 Libssh 2014-03-26 1.9
The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the state to be shared between children processes and allows local users...
CVE-2012-6063 1 Libssh 1 Libssh 2012-12-19 7.5
Double free vulnerability in the sftp_mkdir function in sftp.c in libssh before 0.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors, a different vector than CVE-2012-4559.