SUSE Package Hub - SUSE-PackageHub-16.0-655

Update Info

SUSE-PackageHub-16.0-655

Security update for libssh

Type: security

Severity: moderate

Issued: 2026-04-29

Description:

This update for libssh fixes the following issues:

- Update to version 0.11.4:
- CVE-2026-0964: SCP Protocol Path Traversal in ssh_scp_pull_request() (bsc#1258049)
- CVE-2026-0965: Possible Denial of Service when parsing unexpected configuration files (bsc#1258045)
- CVE-2026-0966: Buffer underflow in ssh_get_hexa() on invalid input (bsc#1258054)
- CVE-2026-0967: Specially crafted patterns could cause DoS (bsc#1258081)
- CVE-2026-0968: OOB Read in sftp_parse_longname() (bsc#1258080)
- CVE-2025-8114: Fix NULL pointer dereference after allocation failure (bsc#1246974)
- CVE-2025-8277: Fix memory leak of ephemeral key pair during repeated wrong KEX (bsc#1249375)

References

CVE: CVE-2026-0968
CVE: CVE-2026-0967
CVE: CVE-2026-0966
CVE: CVE-2026-0965
CVE: CVE-2026-0964
CVE: CVE-2025-8277
CVE: CVE-2025-8114
Bugzilla: 1258081 VUL-0: CVE-2026-0967: libssh: Denial of Service via inefficient regular expression processing
Bugzilla: 1258080 VUL-0: CVE-2026-0968: libssh: Denial of Service due to malformed SFTP message
Bugzilla: 1258054 VUL-0: CVE-2026-0966: libssh: Buffer underflow in ssh_get_hexa() on invalid input
Bugzilla: 1258049 VUL-0: CVE-2026-0964: libssh: Improper sanitation of paths received from SCP servers
Bugzilla: 1258045 VUL-0: CVE-2026-0965: libssh: Denial of Service via improper configuration file handling
Bugzilla: 1249375 VUL-0: CVE-2025-8277: libssh: Memory Exhaustion via Repeated Key Exchange
Bugzilla: 1246974 VUL-0: CVE-2025-8114: libssh: improper handling of allocation errors leads to NULL pointer dereference when calculating the session ID during the key exchange (KEX) process

Packages

libssh-0.11.4-160000.1.1