CVE-2013-0176
The publickey_from_privatekey function in libssh before 0.5.4, when no algorithm is matched during negotiations, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a "Client: Diffie-Hellman Key Exchange Init" packet.Enginsight
Vendor | Product | Version |
---|---|---|
libssh | libssh | 𝑥 ≤ 0.5.3 |
libssh | libssh | 0.4.7 |
libssh | libssh | 0.4.8 |
libssh | libssh | 0.5.0 |
libssh | libssh | 0.5.0 |
libssh | libssh | 0.5.1 |
libssh | libssh | 0.5.2 |
Debian Releases
Ubuntu Releases
Common Weakness Enumeration