| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|
| CVE-2026-0968 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Denial of Service due to malformed SFTP message |
| CVE-2026-0967 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Denial of Service via inefficient regular expression processing |
| CVE-2026-0966 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Buffer underflow in ssh_get_hexa() on invalid input |
| CVE-2026-0965 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Denial of Service via improper configuration file handling |
| CVE-2026-0964 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Improper sanitation of paths received from SCP servers |
| Bug | Description |
|---|
| CVE-2025-14821 | Insecure default configuration leads to local man-in-the-middle attacks on Windows |
| CVE-2025-8277 | A flaw was found in libssh's handling of key exchange (KEX) processes ... |
| CVE-2025-8114 | A flaw was found in libssh, a library that implements the SSH protocol ... |
| CVE-2025-5987 | A flaw was found in libssh when using the ChaCha20 cipher with the Ope ... |
| CVE-2025-5449 | A flaw was found in the SFTP server message decoding logic of libssh. ... |
| CVE-2025-5372 | A flaw was found in libssh versions built with OpenSSL versions older ... |
| CVE-2025-5351 | A flaw was found in the key export functionality of libssh. The issue ... |
| CVE-2025-5318 | A flaw was found in the libssh library in versions less than 0.11.2. A ... |
| CVE-2025-4878 | A vulnerability was found in libssh, where an uninitialized variable e ... |
| CVE-2025-4877 | There's a vulnerability in the libssh package where when a libssh cons ... |
| CVE-2023-48795 | The SSH transport protocol with certain OpenSSH extensions, found in O ... |
| CVE-2023-6918 | A flaw was found in the libssh implements abstract layer for message d ... |
| CVE-2023-6004 | A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump ... |
| CVE-2023-3603 | A missing allocation check in sftp server processing read requests may ... |
| CVE-2023-2283 | A vulnerability was found in libssh, where the authentication check of ... |
| CVE-2023-1667 | A NULL pointer dereference was found In libssh during re-keying with a ... |
| CVE-2021-3634 | A flaw has been found in libssh in versions prior to 0.9.6. The SSH pr ... |
| CVE-2020-16135 | libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buf ... |
| CVE-2020-1730 | A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in t ... |
| CVE-2019-14889 | A flaw was found with the libssh API function ssh_scp_new() in version ... |
| CVE-2018-10933 | A vulnerability was found in libssh's server-side state machine before ... |
| CVE-2016-0739 | libssh before 0.7.3 improperly truncates ephemeral secrets generated f ... |
| CVE-2015-3146 | The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in ... |
| CVE-2014-8132 | Double free vulnerability in the ssh_packet_kexinit function in kex.c ... |
| CVE-2014-0017 | The RAND_bytes function in libssh before 0.6.3, when forking is enable ... |
| CVE-2013-0176 | The publickey_from_privatekey function in libssh before 0.5.4, when no ... |
| CVE-2012-6063 | Double free vulnerability in the sftp_mkdir function in sftp.c in libs ... |
| CVE-2012-4562 | Multiple integer overflows in libssh before 0.5.3 allow remote attacke ... |
| CVE-2012-4561 | The (1) publickey_make_dss, (2) publickey_make_rsa, (3) signature_from ... |
| CVE-2012-4560 | Multiple buffer overflows in libssh before 0.5.3 allow remote attacker ... |
| CVE-2012-4559 | Multiple double free vulnerabilities in the (1) agent_sign_data functi ... |