Denial of Service Vulnerability in libssh Affects Multiple Platforms
CVE-2012-4561

Currently unrated

Key Information:

Vendor: Libssh
Status: Libssh
Vendor: CVE Published:; 30 November 2012

What is CVE-2012-4561?

The libssh library, specifically functions such as publickey_make_dss and publickey_make_rsa, contains a vulnerability that leads to the potential for remote attackers to cause a denial of service. This occurs through improper handling of pointers, which can result in crashes under certain conditions. The flaw affects versions of libssh before 0.5.3, necessitating immediate updates to ensure continued security and stability.

References

http://www.debian.org/security/2012/dsa-2577

vendor-advisoryx_refsource_DEBIAN

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

https://bugzilla.redhat.com/show_bug.cgi?id=871617

x_refsource_MISC

Timeline

Vulnerability published
Nov 30, 2012
Vulnerability Reserved
Aug 21, 2012

JSON

Libssh

What is CVE-2012-4561?

References

Timeline