CVE-2023-2283

Name of the Vulnerable Software and Affected Versions libssh versions 0.9.6 through 0.10.4

Description A vulnerability in the pki verify data signature function of the libssh library for client authentication is related to shortcomings in the authentication procedure. This issue may allow a remote attacker to bypass security restrictions and gain unauthorized access to protected information. The problem is caused by the return value rc, which is initialized to SSH ERROR and later rewritten to save the return value of the function call pki key check hash compatible. The value of the variable is not changed between this point and the cryptographic verification. Therefore, any error between them calls goto error returning SSH OK.

Recommendations For libssh versions 0.9.6 through 0.10.4, consider disabling the pki verify data signature function as a temporary workaround until a patch is available. Restrict access to the affected authentication module to minimize the risk of exploitation. Avoid using the pki key check hash compatible function call in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.