TencentOS Server 3: libssh (TSSA-2023:0193)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0193 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Security Bulletin: Vulnerability in libssh affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in libsshp has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabili...

Security Bulletin: Vulnerability in libssh affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in libssh has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabilit...

Alibaba Cloud Linux 3 : 0119: libssh (ALINUX3-SA-2024:0119)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0119 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-6004: A flaw was found in libssh...

Alibaba Cloud Linux 3 : 0204: libssh (ALINUX3-SA-2022:0204)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0204 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-3634: A flaw has been found in libssh in...

Alibaba Cloud Linux 3 : 0067: libssh (ALINUX3-SA-2022:0067)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0067 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-14889: A flaw was found with the...

Alibaba Cloud Linux 3 : 0077: libssh (ALINUX3-SA-2023:0077)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0077 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-1667: A NULL pointer dereference...

RLSA-2024:2504 Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

libssh security update

An update is available for libssh. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list libssh is a library which implements the SSH protocol. It can be used to...

RockyLinux 9 : libssh (RLSA-2024:2504)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:2504 advisory. libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for...

Return of Wrong Status Code

Overview Affected versions of this package are vulnerable to Return of Wrong Status Code from the chacha20poly1305setkey function, when returning a ChaCha20 initialization error from the OpenSSL backend. An attacker can potentially impact confidentiality, integrity, and availability by exploiting...

PT-2025-27032 · Libssh +2 · Libssh +2

Name of the Vulnerable Software and Affected Versions: libssh affected versions not specified Description: The issue is related to an integer overflow in the sftp decode channel data to packet function of the libssh library. This could allow a remote attacker to cause a denial of service...

Azure Linux 3.0 Security Update: libssh (CVE-2023-6918)

The version of libssh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6918 advisory. - A flaw was found in the libssh implements abstract layer for message digest MD operations implemented by...

CBL Mariner 2.0 Security Update: libssh (CVE-2023-6918)

The version of libssh installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6918 advisory. - A flaw was found in the libssh implements abstract layer for message digest MD operations implemented by...

CVE-2023-48795 affecting package libssh for versions less than 0.10.6-1

CVE-2023-48795 affecting package libssh for versions less than 0.10.6-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-6918 affecting package libssh for versions less than 0.10.6-1

CVE-2023-6918 affecting package libssh for versions less than 0.10.6-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-6004 affecting package libssh for versions less than 0.10.6-1

CVE-2023-6004 affecting package libssh for versions less than 0.10.6-1. An upgraded version of the package is available that resolves this issue...

Libssh: proxycommand/proxyjump features allow injection of malicious code through hostname

...

Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps

Summary Multiple vulnerabilities were addressed in IBM Cloud Pak for Watson AIOps version 4.1.1 Vulnerability Details CVEID:CVE-2021-40528 DESCRIPTION: GnuPG Libgcrypt could allow a remote attacker to bypass security restrictions, caused by a flaw in the ElGamal implementation. By sending a...

Advisory ROSA-SA-2025-2783

Software: libssh 0.9.6 OS: ROSA Virtualization 3.0 packageevrstring: libssh-0.9.6-14.rv30 CVE-ID: CVE-2023-6004 BDU-ID: 2024-00199 CVE-Crit: LOW CVE-DESC.: A vulnerability in the ProxyCommand/ProxyJump component of the libssh library is related to improper code generation controls. Exploitation o...