Threats Tagged 'cve-2026-0967'

Multiple vulnerabilities have been identified in libssh, a library implementing the SSH protocol used in client and server applications. These include a buffer underflow on invalid input, improper sanitation of paths from SCP servers, and several denial of service (DoS) issues related to configuration file handling, regular expression processing, and malformed SFTP messages. Red Hat has released an update for Red Hat Enterprise Linux 10 to address these issues. The security impact is rated as moderate. No known exploits are reported in the wild at this time.

Multiple security vulnerabilities have been identified and addressed in the libssh library used in Red Hat Enterprise Linux 9. These include issues such as double free, use of uninitialized variables, buffer overflows, null pointer dereferences, memory exhaustion, improper input sanitization, and denial of service conditions. The vulnerabilities affect various libssh functions including key export, private key handling, base64 conversion, key exchange, SCP path handling, configuration file processing, regular expression processing, and SFTP message parsing. Red Hat has released an update to fix these vulnerabilities in libssh packages for Red Hat Enterprise Linux 9. The update is rated with a moderate security impact. Users are advised to apply the update as detailed in the Red Hat advisory to remediate these issues.

A flaw was found in libssh. A remote attacker, by controlling client configuration files or known_hosts files, could craft specific hostnames that when processed by the `match_pattern()` function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion, resulting in a Denial of Service (DoS) for the client.