CVE-2026-0968 affecting package libssh for versions less than 0.10.6-8

CVE-2026-0968 affecting package libssh for versions less than 0.10.6-8. A patched version of the package is available...

Moderate: Red Hat Security Advisory: libssh security update

An update for libssh is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Amazon Linux 2023 : libssh, libssh-config, libssh-devel (ALAS2023-2026-1632)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1632 advisory. libssh OOB Read in sftpparselongname CVE-2026-0968 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that Nessus has not tested for this iss...

OPENSUSE-SU-2026:20647-1 Security update for libssh

This update for libssh fixes the following issues: - Update to version 0.11.4: - CVE-2026-0964: SCP Protocol Path Traversal in sshscppullrequest bsc1258049 - CVE-2026-0965: Possible Denial of Service when parsing unexpected configuration files bsc1258045 - CVE-2026-0966: Buffer underflow in...

CLSA-2026-1776705065 libssh: Fix of CVE-2026-0968

CVE-2026-0968: sanitize input handling in sftpparselongname to prevent OOB read when processing malformed SFTP longname fields, add unit tests...

CLSA-2026-1776361748 Fix CVE(s): CVE-2026-0968

SECURITY UPDATE: heap read past bounds in sftpparselongname from malicious SFTP longname field - debian/patches/CVE-2026-0968.patch: validate longname pointer and longnamefield; bound string walks at NUL; fail if field not found - CVE-2026-0968...

CLSA-2026-1776178207 libssh: Fix of CVE-2026-0968

CVE-2026-0968: sftpparselongname out-of-bounds access...

SUSE SLED15 / SLES15 Security Update : freerdp2 (SUSE-SU-2026:0968-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0968-1 advisory. This update for freerdp2 fixes the following issue: - CVE-2026-24491: Heap-use-after-free in videotimer additional fix...

OESA-2026-1562 libssh security update

The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...

OESA-2026-1559 libssh security update

The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...

openSUSE Security Advisory (SUSE-SU-2026:0779-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-8051-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Critical Photon OS Security Update - PHSA-2026-4.0-0968

Updates of 'linux', 'go', 'vim' packages of Photon OS have been released...

BELL-CVE-2026-0968

Bulletin has no description...

SUSE CVE-2026-0968

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

Linux Distros Unpatched Vulnerability : CVE-2026-0968

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an...

CVE-2021-0968

In osimalloc and osicalloc of allocator.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11...

CVE-2022-0968

The microweber application allows large characters to insert in the input field "fist & last name" which can allow attackers to cause a Denial of Service DoS via a crafted HTTP request. in microweber/microweber in GitHub repository microweber/microweber prior to 1.2.12...

EUVD-2026-0968

In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5533...

CVE-2025-0968

creationtimestamp| type| source ---|---|--- 2025-02-19 12:16:03+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijqwd7tpr2o 2025-02-19 14:16:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lijxnk7gy62c 2025-02-19 16:14:08+00:00| seen|...