CVE-2012-4561

Name of the Vulnerable Software and Affected Versions libssh versions prior to 0.5.3

Description The issue affects multiple functions in keys.c in libssh, including publickey make dss, publickey make rsa, signature from string, ssh do sign, and ssh sign session id. This might allow remote attackers to cause a denial of service via unspecified vectors. Exploitation of the vulnerabilities can lead to disruption of confidentiality, integrity, and availability of protected information and can be carried out remotely.

Recommendations For versions prior to 0.5.3, update to version 0.5.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable functions until a patch is available.