Lucene search
K

123 matches found

OSV
OSV
added 2026/06/28 2:16 a.m.3 views

UBUNTU-CVE-2026-58051

libssh2 through 1.11.1 grows its publickey list with SSH2REALLOC but does not zero-initialize new entries before parsing populates them, so a parse failure reaching the cleanup path leaves libssh2publickeylistfree operating on an uninitialized entry. A malicious SSH server offering the publickey...

8.3CVSS5.8AI score0.0028EPSS
Exploits0References7
OSV
OSV
added 2026/06/26 8:17 a.m.4 views

OPENSUSE-SU-2026:21069-1 Security update for google-guest-agent

This update for google-guest-agent fixes the following issues - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header bsc1260264. - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allo...

10CVSS6.7AI score0.01557EPSS
Exploits1References20
OSV
OSV
added 2026/06/25 10:18 p.m.3 views

GHSA-VGWF-H737-FF37 golang.org/x/crypto: Invoking client can cause server deadlock on unexpected responses

A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection's read loop. The blocked goroutine could not be released by calling Close, resulting in a resource leak per connection. Unsolicited global responses are now discarded...

9.1CVSS6AI score0.00533EPSS
Exploits0References30
Github Security Blog
Github Security Blog
added 2026/06/25 10:15 p.m.8 views

golang.org/x/crypto is vulnerable to invoking server panic during CheckHostKey/Authenticate flow

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil...

7.5CVSS6AI score0.00394EPSS
Exploits0References29Affected Software1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in libssh

A flaw was discovered in libssh, where it may attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS attack, as the...

3.3CVSS6.5AI score0.00158EPSS
Exploits0References3
OSV
OSV
added 2026/06/23 12:0 a.m.2 views

OPENSUSE-SU-2026:11109-1 libssh2-1-1.11.1-3.1 on GA media

These are all security issues fixed in the libssh2-1-1.11.1-3.1 package on the GA media of openSUSE Tumbleweed...

9.2CVSS5.9AI score0.00732EPSS
Exploits11References4
CVE
CVE
added 2026/06/10 8:26 p.m.19 views

CVE-2026-48110

CVE-2026-48110 affects Russh, a Rust SSH client/server library. From 0.34.0 up to before 0.61.0, several client/server message handlers decoded attacker-controlled SSH strings, name-lists, and byte fields into owned allocations before applying field-specific bounds. A remote SSH peer could send o...

7.5CVSS5.5AI score0.00268EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 8:16 p.m.10 views

CVE-2026-46673 Russh: Unchecked CryptoVec allocation and growth handling is reachable from local agent inputs in current russh releases and from remote SSH traffic in historical pre-0.58.0 releases

Russh is a Rust SSH client & server library. Prior to version 0.60.3, CryptoVec used unchecked capacity growth, unchecked length arithmetic, and unsafe allocation/locking paths. In current russh releases, local SSH agent peers could still feed attacker-controlled frame lengths into buffer growth...

7.5CVSS5.6AI score0.00263EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.17 views

libssh security update

An update is available for libssh. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list libssh is a library which implements the SSH protocol. It can be used to...

8.2CVSS5.8AI score0.00582EPSS
Exploits0
OSV
OSV
added 2026/05/28 3:43 p.m.11 views

RLSA-2026:18683 Moderate: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: Double Free Vulnerability in libssh Key Export Functions CVE-2025-5351 libssh: Use of uninitialized variable in privatekeyfromfile CVE-2025-4878 libssh: Write...

6.5CVSS6.3AI score0.00582EPSS
Exploits0References11
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:16 a.m.21 views

Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh

...

8.8CVSS5.8AI score0.00314EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:15 a.m.16 views

Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh

...

9.1CVSS5.8AI score0.00466EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:15 a.m.15 views

Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh

...

7.5CVSS5.8AI score0.00394EPSS
Exploits0
Snyk
Snyk
added 2026/05/22 5:32 a.m.8 views

Uncaught Exception

Overview golang.org/x/crypto/ssh is a SSH client and server Affected versions of this package are vulnerable to Uncaught Exception in the CertChecker component when used as a public key callback without setting IsUserAuthority or IsHostAuthority. An attacker can cause the server to panic by...

8.7CVSS5.8AI score0.00394EPSS
Exploits0References2
CVE
CVE
added 2026/05/22 2:31 a.m.184 views

CVE-2026-46595

CVE-2026-46595 affects golang.org/x/crypto/ssh. The issue arises when VerifiedPublicKeyCallback is invoked with a callback type other than public key, causing the source-address validation to be bypassed and enabling an authorization bypass. The description notes this is a continuation of CVE-202...

10CVSS5.8AI score0.0044EPSS
Exploits0References24Affected Software1
OSV
OSV
added 2026/05/22 2:31 a.m.1 views

CVE-2026-42508 Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts

Previously, a revoked 'SignatureKey' belonging to a CA was not correctly checked for revocation. Now, both the 'key' and 'key.SignatureKey' are checked for @revoked...

9.1CVSS6AI score0.00487EPSS
Exploits0References23
Cvelist
Cvelist
added 2026/05/22 2:31 a.m.76 views

CVE-2026-39830 Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh

A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection's read loop. The blocked goroutine could not be released by calling Close, resulting in a resource leak per connection. Unsolicited global responses are now discarded...

0.00533EPSS
Exploits0References5
OSV
OSV
added 2026/05/22 2:8 a.m.6 views

GO-2026-5023 Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh

Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped...

10CVSS5.8AI score0.0044EPSS
Exploits0References3
OSV
OSV
added 2026/05/11 9:1 a.m.14 views

CLSA-2026-1778490111 libssh: Fix of CVE-2026-0966

CVE-2026-0966: fix heap buffer underflow in sshgethexa on NULL or zero-length input, remotely reachable via GSSAPI authentication logging...

8.2CVSS6.7AI score0.00582EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/08 7:21 p.m.9 views

CVE-2026-7598

A flaw was found in the libssh2 library. A remote attacker can exploit an integer overflow vulnerability in the userauthpassword function by manipulating the usernamelen or passwordlen arguments and cause a heap-based buffer overflow. This leads to a crash to the application linked to the library...

9.1CVSS7.6AI score0.00466EPSS
Exploits0References9
Rows per page
Query Builder