OSV-2024-847 Null-dereference READ in _libssh2_packet_add

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69234 Crash type: Null-dereference READ Crash state: libssh2packetadd fullpacket libssh2transportread...

PT-2023-35661 · Libssh2 · Libssh2

Name of the Vulnerable Software and Affected Versions: libssh2 affected versions not specified Description: The issue is related to a heap buffer overflow read. Technical details about the crash include the libssh2 kex agree instr and libssh2 packet add functions, as well as the fullpacket state...