| Bug | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2025-5987 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | A flaw was found in libssh when using the ChaCha20 cipher with the Ope ... |
| CVE-2025-5372 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | A flaw was found in libssh versions built with OpenSSL versions older ... |
| CVE-2025-5351 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | A flaw was found in the key export functionality of libssh. The issue ... |
| CVE-2025-5318 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | A flaw was found in the libssh library. An out-of-bounds read can be t ... |
| CVE-2025-4878 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | |
| CVE-2025-4877 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | |
| Bug | Description |
|---|
| CVE-2025-5449 | |
| CVE-2023-48795 | The SSH transport protocol with certain OpenSSH extensions, found in O ... |
| CVE-2023-6918 | A flaw was found in the libssh implements abstract layer for message d ... |
| CVE-2023-6004 | A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump ... |
| CVE-2023-3603 | A missing allocation check in sftp server processing read requests may ... |
| CVE-2023-2283 | A vulnerability was found in libssh, where the authentication check of ... |
| CVE-2023-1667 | A NULL pointer dereference was found In libssh during re-keying with a ... |
| CVE-2021-3634 | A flaw has been found in libssh in versions prior to 0.9.6. The SSH pr ... |
| CVE-2020-16135 | libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buf ... |
| CVE-2020-1730 | A flaw was found in libssh versions before 0.8.9 and before 0.9.4 in t ... |
| CVE-2019-14889 | A flaw was found with the libssh API function ssh_scp_new() in version ... |
| CVE-2018-10933 | A vulnerability was found in libssh's server-side state machine before ... |
| CVE-2016-0739 | libssh before 0.7.3 improperly truncates ephemeral secrets generated f ... |
| CVE-2015-3146 | The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in ... |
| CVE-2014-8132 | Double free vulnerability in the ssh_packet_kexinit function in kex.c ... |
| CVE-2014-0017 | The RAND_bytes function in libssh before 0.6.3, when forking is enable ... |
| CVE-2013-0176 | The publickey_from_privatekey function in libssh before 0.5.4, when no ... |
| CVE-2012-6063 | Double free vulnerability in the sftp_mkdir function in sftp.c in libs ... |
| CVE-2012-4562 | Multiple integer overflows in libssh before 0.5.3 allow remote attacke ... |
| CVE-2012-4561 | The (1) publickey_make_dss, (2) publickey_make_rsa, (3) signature_from ... |
| CVE-2012-4560 | Multiple buffer overflows in libssh before 0.5.3 allow remote attacker ... |
| CVE-2012-4559 | Multiple double free vulnerabilities in the (1) agent_sign_data functi ... |