CVE-2023-1667

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions libssh (affected versions not specified)

Description A NULL pointer dereference was found in libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service. The vulnerability is related to errors in pointer dereferencing and can be exploited by a remote attacker to disrupt service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2023:3839

ALSA-2023:6643

ALT-PU-2023-4094

ALT-PU-2023-4108

ALT-PU-2023-4683

ALT-PU-2023-4685

BDU:2023-03857

CESA-2023_3839

CVE-2023-1667

DLA-3437-1

DSA-5409-1

MGASA-2023-0184

OESA-2023-1291

OESA-2023-1305

OESA-2023-1306

OESA-2023-1329

OPENSUSE-SU-2024:12914-1

RHSA-2023:3839

RHSA-2023:6643

RHSA-2023_3839

RHSA-2023_6643

RHSA-2024:0538

RLSA-2023:3839

ROSA-SA-2024-2516

SUSE-SU-2024:0140-1

SUSE-SU-2024:0525-1

SUSE-SU-2024:0539-1

SUSE-SU-2024_0140-1

USN-6138-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Libssh

CVE-2023-1667

Weakness Enumeration

Related Identifiers

Affected Products

References · 104