CVE-2023-6918

2023-12-1900:15:08

Debian Security Bug Tracker

security-tracker.debian.org

libssh

message digest

crypto backends

low-memory

null dereferences

crashes

uninitialized memory

kdf

decryption

integrity

connection termination

unix

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.1%

JSON

A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported crypto backends. The return values from these were not properly checked, which could cause low-memory situations failures, NULL dereferences, crashes, or usage of the uninitialized memory as an input for the KDF. In this case, non-matching keys will result in decryption/integrity failures, terminating the connection.

OSVersionArchitecturePackageVersionFilename
Debian12alllibssh< 0.10.6-0+deb12u1libssh_0.10.6-0+deb12u1_all.deb
Debian11alllibssh< 0.9.8-0+deb11u1libssh_0.9.8-0+deb11u1_all.deb
Debian10alllibssh<= 0.8.7-1+deb10u1libssh_0.8.7-1+deb10u1_all.deb
Debian999alllibssh< 0.10.6-1libssh_0.10.6-1_all.deb
Debian13alllibssh< 0.10.6-1libssh_0.10.6-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	libssh	< 0.10.6-0+deb12u1	libssh_0.10.6-0+deb12u1_all.deb
Debian	11	all	libssh	< 0.9.8-0+deb11u1	libssh_0.9.8-0+deb11u1_all.deb
Debian	10	all	libssh	<= 0.8.7-1+deb10u1	libssh_0.8.7-1+deb10u1_all.deb
Debian	999	all	libssh	< 0.10.6-1	libssh_0.10.6-1_all.deb
Debian	13	all	libssh	< 0.10.6-1	libssh_0.10.6-1_all.deb