Lucene search

K

RedhatCVELIST:CVE-2023-1667

HistoryMay 26, 2023 - 12:00 a.m.

CVE-2023-1667

2023-05-2600:00:00

CWE-476

redhat

www.cve.org

7

null pointer dereference

libssh

re-keying

algorithm guessing

denial of service

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

46.2%

A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "libssh",
    "versions": [
      {
        "version": "libssh-2",
        "status": "affected"
      }
    ]
  }
]

References

www.libssh.org/security/advisories/CVE-2023-1667.txt

access.redhat.com/security/cve/CVE-2023-1667

bugzilla.redhat.com/show_bug.cgi?id=2182199

lists.debian.org/debian-lts-announce/2023/05/msg00029.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/27PD44ALQTZXX7K6JAM3BXBUHYA6DFFN/

security.gentoo.org/glsa/202312-05

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

46.2%

Related for CVELIST:CVE-2023-1667

osv8 ubuntucve1 prion1 veracode1 cve1 redhatcve1 nvd1 ibm11 debiancve1 almalinux2 debian2 nessus39 redos1 oraclelinux2 openvas22 ubuntu1 cloudfoundry1 redhat45 mageia1 slackware1 rocky1 fedora2 rosalinux1 gentoo1 photon3 hp1